Re: unrar: some issues missing from security tracker data

To: Christoph Anton Mitterer <calestyo@scientia.org>
Cc: Bastian Germann <bage@debian.org>, debian-security-tracker@lists.debian.org, Martin Meredith <mez@debian.org>, Norbert Preining <norbert@preining.info>
Subject: Re: unrar: some issues missing from security tracker data
From: yokota <yokota.hgml@gmail.com>
Date: Fri, 25 Aug 2023 22:09:59 +0900
Message-id: <[🔎] CA+0c0dXdVZxqBVKYNSGj5173f34i7UX+mkD=VkCA=u8YD8F4qA@mail.gmail.com>
In-reply-to: <[🔎] 1d5685b8198fb861fbbac15fe6f7fd3d06487834.camel@scientia.org>
References: <[🔎] 20b166b13fc4b98d87372ae5591b4a508c886caf.camel@scientia.org> <[🔎] ZOhc7MndBxLA0YvA@eldamar.lan> <[🔎] f9906617-2495-4cc9-b89b-0b57850bb11c@debian.org> <[🔎] CA+0c0dWAq9HLkoBbk1MJ_C5CY3esYZarCZNkaEa2PPSU=zQJSg@mail.gmail.com> <[🔎] 1d5685b8198fb861fbbac15fe6f7fd3d06487834.camel@scientia.org>

> My mail was really just about the missing entry in the security
> tracker, as this CVE is now quite "famous" and people may look it up
> there (at the security tracker) and be unsure whether or not it is
> already fixed (which it is), especially since the changelog.Debian
> contains as of now the ZDI-number only, and not the CVE)

Add note about CVE-2023-40477 to changelog in Debian unstable Git repository.
 https://github.com/debian-calibre/unrar-nonfree/blob/d32cc60a161bf34b46b674fcef053939cc45851a/debian/changelog#L15
>  ZDI-23-1152 is also filed as CVE-2023-40477 .
>  https://www.cve.org/CVERecord?id=CVE-2023-40477

--
YOKOTA Hiroshi

Reply to:

References:
- unrar: some issues missing from security tracker data
  - From: Christoph Anton Mitterer <calestyo@scientia.org>
- Re: unrar: some issues missing from security tracker data
  - From: Salvatore Bonaccorso <carnil@debian.org>
- Re: unrar: some issues missing from security tracker data
  - From: Bastian Germann <bage@debian.org>
- Re: unrar: some issues missing from security tracker data
  - From: yokota <yokota.hgml@gmail.com>
- Re: unrar: some issues missing from security tracker data
  - From: Christoph Anton Mitterer <calestyo@scientia.org>

Prev by Date: Re: unrar: some issues missing from security tracker data
Next by Date: Re: DSA-5332 Missing from your cross references page
Previous by thread: Re: unrar: some issues missing from security tracker data
Next by thread: Re: unrar: some issues missing from security tracker data
Index(es):
- Date
- Thread