Add CVE-2020-24890/libraw

author: Salvatore Bonaccorso <carnil@debian.org> 2020-09-16 22:38:03 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-09-16 22:38:03 +0200
commit: fc090fb6a954f4916700d07e8311cdc3663985ff (patch)
tree: 93d60505c8e694bf8ed5722633d4dffff0c178f8 /data/CVE/2020.list
parent: eb90e9f84aeaa26b40d45fabdbdf9902acc6f5f2 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index abd39354aa..da7ed1ce63 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -1532,7 +1532,8 @@ CVE-2020-24892
 CVE-2020-24891
 	REJECTED
 CVE-2020-24890 (libraw 20.0 has a null pointer dereference vulnerability in parse_tiff ...)
-	TODO: check
+	- libraw <unfixed>
+	NOTE: https://github.com/LibRaw/LibRaw/issues/335
 CVE-2020-24889 (A buffer overflow vulnerability in LibRaw version &lt; 20.0 LibRaw::Ge ...)
 	TODO: check
 CVE-2020-24888
author	Salvatore Bonaccorso <carnil@debian.org>	2020-09-16 22:38:03 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-09-16 22:38:03 +0200
commit	fc090fb6a954f4916700d07e8311cdc3663985ff (patch)
tree	93d60505c8e694bf8ed5722633d4dffff0c178f8 /data/CVE/2020.list
parent	eb90e9f84aeaa26b40d45fabdbdf9902acc6f5f2 (diff)