Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 00c25b7e by Salvatore Bonaccorso at 2021-07-01T14:59:46+02:00 Aassociate two libressl CVEs with the old itp bug - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -81,9 +81,9 @@ CVE-2020-36396 CVE-2020-36395 RESERVED CVE-2019-25049 (LibreSSL 2.9.1 through 3.2.1 has an out-of-bounds read in asn1_item_pr ...) - NOT-FOR-US: LibreSSL + - libressl <itp> (bug #754513) CVE-2019-25048 (LibreSSL 2.9.1 through 3.2.1 has a heap-based buffer over-read in do_p ...) - NOT-FOR-US: LibreSSL + - libressl <itp> (bug #754513) CVE-2018-25018 (UnRAR 5.6.1.7 through 5.7.4 and 6.0.3 has an out-of-bounds write durin ...) - unrar-nonfree <unfixed> NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=9845 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/00c25b7ee3e8d1a235b56432e9f5288ec75e0151 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/00c25b7ee3e8d1a235b56432e9f5288ec75e0151 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits