unrar: some issues missing from security tracker data

To: debian-security-tracker@lists.debian.org
Subject: unrar: some issues missing from security tracker data
From: Christoph Anton Mitterer <calestyo@scientia.org>
Date: Thu, 24 Aug 2023 16:02:22 +0200
Message-id: <[🔎] 20b166b13fc4b98d87372ae5591b4a508c886caf.camel@scientia.org>

Hey.

Unrar data in the security tracker seems to miss:

CVE-2023-40477 https://www.zerodayinitiative.com/advisories/ZDI-23-1152/
CVE-2023-38831 https://www.group-ib.com/blog/cve-2023-38831-winrar-zero-day/


AFAIU, at least the first one is already fixed in Debian (not sure
about the 2nd).

Cheers,
Chris.

Reply to:

Follow-Ups:
- Re: unrar: some issues missing from security tracker data
  - From: Salvatore Bonaccorso <carnil@debian.org>

Prev by Date: External check
Next by Date: External check
Previous by thread: External check
Next by thread: Re: unrar: some issues missing from security tracker data
Index(es):
- Date
- Thread