Add CVE-202-2461{3,4}/libmetadata-extractor-java

author: Salvatore Bonaccorso <carnil@debian.org> 2022-02-25 09:19:07 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-02-25 09:19:07 +0100
commit: 5338d1c819b86274fd9d8927f9a8523ed05098e9 (patch)
tree: 1e8f905e352430a6227d1010793771d6ca7ac1a9
parent: 0fd930ff91cfdbf87cf9d164fb1fe237f7c24a01 (diff)
1 files changed, 4 insertions, 2 deletions
diff --git a/data/CVE/list b/data/CVE/list
index e247404e9e..91cc91b9b6 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -3835,9 +3835,11 @@ CVE-2022-24615 (zip4j up to 2.9.0 can throw various uncaught exceptions while pa
 	NOTE: https://github.com/srikanth-lingala/zip4j/issues/377
 	TODO: check details
 CVE-2022-24614 (When reading a specially crafted JPEG file, metadata-extractor up to 2 ...)
-	TODO: check
+	- libmetadata-extractor-java <unfixed>
+	NOTE: https://github.com/drewnoakes/metadata-extractor/issues/561
 CVE-2022-24613 (metadata-extractor up to 2.16.0 can throw various uncaught exceptions  ...)
-	TODO: check
+	- libmetadata-extractor-java <unfixed>
+	NOTE: https://github.com/drewnoakes/metadata-extractor/issues/561
 CVE-2022-24612
 	RESERVED
 CVE-2022-24611
author	Salvatore Bonaccorso <carnil@debian.org>	2022-02-25 09:19:07 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-02-25 09:19:07 +0100
commit	5338d1c819b86274fd9d8927f9a8523ed05098e9 (patch)
tree	1e8f905e352430a6227d1010793771d6ca7ac1a9
parent	0fd930ff91cfdbf87cf9d164fb1fe237f7c24a01 (diff)