Update information for CVE-2018-12688/tinyexr

author: Salvatore Bonaccorso <carnil@debian.org> 2021-07-31 20:47:26 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-07-31 20:47:26 +0200
commit: a0181e9a66f7ca7c67b51ef69df9a66ae2717389 (patch)
tree: f1d185d32f392b5f9a508469fa60e3823b243337 /data/CVE/2018.list
parent: 63dfbc02a00add5fd35ce5448dad7242a629aa6e (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/2018.list b/data/CVE/2018.list
index 87c78b3355..c8a26867b8 100644
--- a/data/CVE/2018.list
+++ b/data/CVE/2018.list
@@ -22568,7 +22568,8 @@ CVE-2018-12689 (phpLDAPadmin 1.2.2 allows LDAP injection via a crafted server_id
 	NOTE: Non-security issue as demostrated in https://bugs.debian.org/902186
 	NOTE: and disputed as security issue. Should be properly rejected by MITRE.
 CVE-2018-12688 (tinyexr 0.9.5 has a segmentation fault in the wav2Decode function. ...)
-	NOT-FOR-US: tinyexr
+	- tinyexr <undetermined>
+	NOTE: https://github.com/syoyo/tinyexr/issues/83
 CVE-2018-12687 (tinyexr 0.9.5 has an assertion failure in DecodePixelData in tinyexr.h ...)
 	- tinyexr <undetermined>
 	NOTE: https://github.com/syoyo/tinyexr/issues/84
author	Salvatore Bonaccorso <carnil@debian.org>	2021-07-31 20:47:26 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-07-31 20:47:26 +0200
commit	a0181e9a66f7ca7c67b51ef69df9a66ae2717389 (patch)
tree	f1d185d32f392b5f9a508469fa60e3823b243337 /data/CVE/2018.list
parent	63dfbc02a00add5fd35ce5448dad7242a629aa6e (diff)