diff options
author | Thorsten Alteholz <debian@alteholz.de> | 2021-03-27 23:53:17 +0100 |
---|---|---|
committer | Thorsten Alteholz <debian@alteholz.de> | 2021-03-27 23:55:19 +0100 |
commit | c96df7472de3d81c22b3c05e2364989db40511e9 (patch) | |
tree | 6ad4f6af2cc20dc7c8be4079b9b21d044b412999 | |
parent | 2df913fcf623a68c1d45ea2b03559b48eabde254 (diff) |
mark CVE-2020-36280 as not-affected for Stretch
-rw-r--r-- | data/CVE/2020.list | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list index 817852aa1f..7fd7d84442 100644 --- a/data/CVE/2020.list +++ b/data/CVE/2020.list @@ -8,6 +8,7 @@ CVE-2020-36281 (Leptonica before 1.80.0 allows a heap-based buffer over-read in NOTE: https://github.com/DanBloomberg/leptonica/commit/5ee24b398bb67666f6d173763eaaedd9c36fb1e5 CVE-2020-36280 (Leptonica before 1.80.0 allows a heap-based buffer over-read in pixRea ...) - leptonlib <unfixed> (bug #985089) + [stretch] - leptonlib <not-affected> (Vulnerable code introduced later) NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=23654 NOTE: https://github.com/DanBloomberg/leptonica/commit/5ba34b1fe741d69d43a6c8cf767756997eadd87c CVE-2020-36279 (Leptonica before 1.80.0 allows a heap-based buffer over-read in raster ...) |