Phuc-Thanh Nguyen
Phuc-Thanh Nguyen
Hi Development Team, I identified another potential vulnerability in a clone function inflate() in `base/poco/Foundation/src/inflate.c ` sourced from [madler/zlib](https://github.com/madler/zlib). This issue, originally reported in [CVE-2022-37434](https://nvd.nist.gov/vuln/detail/https://github.com/advisories/CVE-2022-37434), was resolved in the repository...
### Changelog category (leave one): - Bug Fix ### Description Hi Development Team, I identified potential vulnerabilities in clone functions in `base/poco/Foundation/src` sourced from [madler/zlib](https://github.com/madler/zlib). This issue, originally reported in...
**Description** This PR fixes a use-after-free in onig_new_deluxe() in regext.c in Oniguruma which was cloned from [kkos/oniguruma@0f7f61e](https://github.com/kkos/oniguruma/commit/0f7f61e) but did not receive the security patch. This PR applies the same patch...
**Description** This PR fixes a potential vulnerability in `gmc_mmx()` in mpegvideodsp.c that was cloned from FFmpeg but did not receive the security patch. The original issue was reported and fixed...
Hi Development Team, I identified a potential vulnerability in a clone function BZ2_decompress() in `src/vizdoom/bzip2/decompress.c` sourced from [federicomenaquintero/bzip2](https://gitlab.com/federicomenaquintero/bzip2). This issue, originally reported in [CVE-2019-12900](https://nvd.nist.gov/vuln/detail/CVE-2019-12900), was resolved in the repository via...
**Description** This PR fixes a security vulnerability in file third_party/mspack/lzxd.c that was cloned from clam but did not receive the security patch. The original issue was reported and fixed under...
Hi Development Team, I identified another potential vulnerability in a clone function inflate() in `assimp/contrib/zlib/inflate.c` sourced from [madler/zlib](https://github.com/madler/zlib). This issue, originally reported in [CVE-2022-37434](https://nvd.nist.gov/vuln/detail/https://github.com/advisories/CVE-2022-37434), was resolved in the repository via...
Hi Development Team, I identified potential vulnerabilities in clone functions in `assimp/contrib/zlib` sourced from [madler/zlib](https://github.com/madler/zlib). This issue, originally reported in [CVE-2018-25032](https://nvd.nist.gov/vuln/detail/https://github.com/advisories/CVE-2018-25032), was resolved in the repository via this commit https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531....
Hi Development Team, I identified a potential vulnerability in clone functions rtreenode() in `3rd_party/sqlite_mod/ext/rtree/rtree.c` sourced from [sqlite/sqlite](https://github.com/sqlite/sqlite). This issue, originally reported in [CVE-2019-8457](https://nvd.nist.gov/vuln/detail/CVE-2019-8457), was resolved in the repository via this...
**Description** This PR fixes a potential vulnerability that was cloned from libjpeg-turbo but did not receive the security patch. The original issue was reported and fixed under https://github.com/libjpeg-turbo/libjpeg-turbo/commit/42ce199c9cfe129e5e21afd48dfe757a6acf87c4. This PR...