Debian Patches
Status for bzip3/1.2.2-2
| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| CVE-2023-29415.patch | [PATCH] xwrite: nop when len=0 / size=0 | Kamila Szewczyk <27734421+kspalaiologos@users.noreply.github.com> | no | 2023-03-27 | ||
| CVE-2023-29416.patch | [PATCH] tentative libsais safety patches | Kamila Szewczyk <kspalaiologos@gmail.com> | yes | debian upstream | ttps://github.com/kspalaiologos/bzip3/commit/bfa5bf82b53715dfedf048e5859a46cf248668ff | 2023-03-26 |
| CVE-2023-29418.patch | [PATCH] safety checks for decoding/testing when the buffer size and block size are inconsistent, tentative CRC32 version for BE systems (needs further verification on SPARC?) |
Kamila Szewczyk <kspalaiologos@gmail.com> | no | 2023-03-19 | ||
| CVE-2023-29419.patch | [PATCH] mRLE: decoding bounds | Kamila Szewczyk <kspalaiologos@gmail.com> | no | 2023-03-22 | ||
| CVE-2023-29420.patch | [PATCH] store mode: check for truncation | Kamila Szewczyk <kspalaiologos@gmail.com> | no | 2023-03-22 | ||
| CVE-2023-29421.patch | [PATCH] strict check for size_src overflow of badly bounded b1 | Kamila Szewczyk <kspalaiologos@gmail.com> | no | 2023-03-22 |