Control: tags -1 - fixed-upstream
Control: reassign -1 qt5-image-formats-plugins
Control: retitle -1 buffer overflow in the mng plugin for Qt (CVE-2020-23884)
The upstream fix in Nomacs was for MS Windows only:
"I removed the qmng.dll plugin from Windows version. MNG files will
not work by defaul
Processing control commands:
> tags -1 - fixed-upstream
Bug #1014124 [src:nomacs] nomacs: CVE-2020-23884
Removed tag(s) fixed-upstream.
> reassign -1 qt5-image-formats-plugins
Bug #1014124 [src:nomacs] nomacs: CVE-2020-23884
Bug reassigned from package 'src:nomacs' to 'qt5-image-formats-plugins'.
I think this should be filled against
https://tracker.debian.org/pkg/qtimageformats-opensource-src
Explanation:
https://github.com/nomacs/nomacs/issues/516#issuecomment-1578313635
Source: nomacs
X-Debbugs-CC: t...@security.debian.org
Severity: grave
Tags: security
Hi,
The following vulnerability was published for nomacs.
CVE-2020-23884[0]:
| A buffer overflow in Nomacs v3.15.0 allows attackers to cause a denial
| of service (DoS) via a crafted MNG file.
https://github.co
4 matches
Mail list logo
