Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: ec50c1d8 by Salvatore Bonaccorso at 2023-09-01T22:15:55+02:00 Update information for CVE-2023-39616/aom - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -607,7 +607,16 @@ CVE-2023-39663 (Mathjax up to v2.7.9 was discovered to contain two Regular expre TODO: check CVE-2023-39616 (AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read mem ...) - aom 3.7.0~rc3-1 - NOTE: https://bugs.chromium.org/p/aomedia/issues/detail?id=3372#c3 (fixes in 3.7.0~rc2) + [bullseye] - aom <not-affected> (Vulnerable code introduced later) + [buster] - aom <not-affected> (Vulnerable code introduced later) + NOTE: https://bugs.chromium.org/p/aomedia/issues/detail?id=3372#c3 + NOTE: Introduced by: https://aomedia.googlesource.com/aom/+/55318e3c27fbcff4b4888e6b413ca1e34e4fb8a1 (3.4.0_rc1) + NOTE: Fixed by: https://aomedia.googlesource.com/aom/+/35254736d9753447ac9bccf8e0062bdb74b0bdb7 (3.7.0_rc2) + NOTE: Fixed by: https://aomedia.googlesource.com/aom/+/cbce06167ac7adc945786320ae3ea6e39b11e1d1 (3.7.0_rc2) + NOTE: Fixed by: https://aomedia.googlesource.com/aom/+/54e4b8fffababa02c31674b3b37dc0c26dd0a898 (3.7.0_rc2) + NOTE: Fixed by: https://aomedia.googlesource.com/aom/+/df38eb169193f169bb4a81edd7b54d15cd5afc2a (3.7.0_rc2) + NOTE: Testcase: https://aomedia.googlesource.com/aom/+/7c3bcc8fa57ffda7f128f3cea9e8bb31c83fe4b7 (3.7.0_rc2) + NOTE: Testcase: https://aomedia.googlesource.com/aom/+/d90659acbb1487949195006d46c4582c62f1b90f (3.7.0_rc2) CVE-2023-39615 (Xmlsoft Libxml2 v2.11.0 was discovered to contain a global buffer over ...) - libxml2 <unfixed> [bookworm] - libxml2 <no-dsa> (Minor issue) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ec50c1d8e40cf26c8808d7e3c7319cd0c263a028 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ec50c1d8e40cf26c8808d7e3c7319cd0c263a028 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits