Bug 14059

Summary:	[CVE21] catdoc 0.95 CVEs
Product:	[ROSA-based products] ROSA Fresh	Reporter:	Vladimir Potapov <v.potapov>
Component:	Contributed Packages	Assignee:	ROSA Linux Bugs <bugs>
Status:	RESOLVED FIXED	QA Contact:	ROSA Linux Bugs <bugs>
Severity:	normal
Priority:	Normal	CC:	a.proklov
Version:	All	Flags:	v.potapov: secteam_verified?
Target Milestone:	---
Hardware:	All
OS:	Linux
Whiteboard:
Platform:	---	ROSA Vulnerability identifier:
RPM Package:		ISO-related:
Bad POT generating:		Upstream:

Description Vladimir Potapov 2023-11-29 11:54:03 MSK

https://nvd.nist.gov/vuln/detail/CVE-2023-46345 HIGH
https://nvd.nist.gov/vuln/detail/CVE-2017-11110 7.8 HIGH

Comment 1 Vladimir Potapov 2023-11-29 11:54:29 MSK

(contrib!)

Comment 2 Aleksandr Proklov 2023-12-08 06:18:58 MSK

CVE-2023-46345 патчей нет и врядли будут
CVE-2017-11110 - уже было закрыто патчем

Comment 3 Vladimir Potapov 2023-12-08 08:42:57 MSK

https://security-tracker.debian.org/tracker/CVE-2023-46345
Crash in CLI tool, no security impact