Add CVE-2020-24890/libraw

author: Salvatore Bonaccorso <carnil@debian.org> 2020-09-16 22:38:03 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-09-16 22:38:03 +0200
commit: f180e81d512d4971fb6b2f9b542a65d231ebe8dc (patch)
tree: 7c3373587a29940227e1cfd919f5378e85a65e0e /data
parent: 186a574b3a06436e5f8758dc46d68658d09f1931 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list
index 5f8072d78e..9632b38214 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1563,7 +1563,8 @@ CVE-2020-24892
 CVE-2020-24891
 	REJECTED
 CVE-2020-24890 (libraw 20.0 has a null pointer dereference vulnerability in parse_tiff ...)
-	TODO: check
+	- libraw <unfixed>
+	NOTE: https://github.com/LibRaw/LibRaw/issues/335
 CVE-2020-24889 (A buffer overflow vulnerability in LibRaw version &lt; 20.0 LibRaw::Ge ...)
 	TODO: check
 CVE-2020-24888
author	Salvatore Bonaccorso <carnil@debian.org>	2020-09-16 22:38:03 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-09-16 22:38:03 +0200
commit	f180e81d512d4971fb6b2f9b542a65d231ebe8dc (patch)
tree	7c3373587a29940227e1cfd919f5378e85a65e0e /data
parent	186a574b3a06436e5f8758dc46d68658d09f1931 (diff)