TEMP-0000000-A4EF31

NameTEMP-0000000-A4EF31
DescriptionNull pointer access in inflatehd tool
SourceAutomatically generated temporary name. Not for external reference.

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
nghttp2 (PTS)buster, buster (security)1.36.0-2+deb10u1vulnerable
bullseye1.43.0-1vulnerable
bookworm, sid1.52.0-1vulnerable

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
nghttp2source(unstable)(unfixed)unimportant

Notes

Upstream report: https://github.com/tatsuhiro-t/nghttp2/issues/235
Git commit: https://github.com/tatsuhiro-t/nghttp2/commit/3572e7c6343cb85fc21f5667a7ed0902cf5305cf
CVE Request: https://www.openwall.com/lists/oss-security/2015/06/03/20
inflatehd not installed into the Debian binary packages

Search for package or bug name: Reporting problems