Debian activities Link to heading
Prepare and upload:
Review and sponsor:
LTS / ELTS Link to heading
Frontdesk / update of internal scripts / administrative work.
Mark CVE-2009-4228 as not-affected (xfig)
- CVE-2021-40241: A potential Buffer Overflow exist in (src/w_help.c:55). The length of getenv(“LANG”) may become very long and cause Buffer Overflow while executing sprintf(…).
- CVE-2021-44960 The XMLDocument::getRoot function in the renderDocument function handled the XMLDocument object improperly. Specifically, it returned a null pointer prematurely at the second if statement, resulting in a null pointer reference behind the renderDocument function.
- CVE-2019-6245 and CVE-2019-6247 issues were discovered in Anti-Grain Geometry (AGG) within the function agg::cell_aa::not_equal. Since svgpp is a header-only library, the issue is only transitive in theory. As a result, only a dependency version hardening has been added to the control file.