Update information for CVE-2018-12093/tinyexr

author: Salvatore Bonaccorso <carnil@debian.org> 2021-07-31 20:45:01 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-07-31 20:45:01 +0200
commit: 067cab6363e7a1a4c7ca54e8ff1d15202edd510b (patch)
tree: 8ec4874eea45061c880a9e124e47920a69d6badb /data/CVE/list.2018
parent: 6de57e50171d6f8835234243f07b1d16ec1db034 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/list.2018 b/data/CVE/list.2018
index 3f4082c2a5..ba8278ead0 100644
--- a/data/CVE/list.2018
+++ b/data/CVE/list.2018
@@ -24440,7 +24440,8 @@ CVE-2018-12095 (A Reflected Cross-Site Scripting web vulnerability has been disc
 CVE-2018-12094 (Cross-site scripting (XSS) vulnerability in news.php in Dimofinf CMS V ...)
 	NOT-FOR-US: Dimofinf CMS
 CVE-2018-12093 (tinyexr 0.9.5 has a memory leak in ParseEXRHeaderFromMemory in tinyexr ...)
-	NOT-FOR-US: tinyexr
+	- tinyexr <not-affected> (Fixed with initial upload to Debian)
+	NOTE: https://github.com/syoyo/tinyexr/issues/79
 CVE-2018-12092 (tinyexr 0.9.5 has a heap-based buffer over-read in tinyexr::DecodePixe ...)
 	- tinyexr <not-affected> (Fixed with initial upload to Debian)
 	NOTE: https://github.com/syoyo/tinyexr/issues/78
author	Salvatore Bonaccorso <carnil@debian.org>	2021-07-31 20:45:01 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-07-31 20:45:01 +0200
commit	067cab6363e7a1a4c7ca54e8ff1d15202edd510b (patch)
tree	8ec4874eea45061c880a9e124e47920a69d6badb /data/CVE/list.2018
parent	6de57e50171d6f8835234243f07b1d16ec1db034 (diff)