GHSA-q5fm-55c2-v6j9: Fiona affected by CVE-2023-45853 related to MiniZip madler-zlib
Vulnerability scan of fiona shows CVE-2023-45853
References
- github.com/OSGeo/gdal/commit/4aa7ca61c1d2191baf1eea2a97d0dec33a41691f
- github.com/Toblerity/Fiona
- github.com/Toblerity/Fiona/security/advisories/GHSA-q5fm-55c2-v6j9
- github.com/advisories/GHSA-q5fm-55c2-v6j9
- github.com/madler/zlib/commit/73331a6a0481067628f065ffe87bb1d8f787d10c
- nvd.nist.gov/vuln/detail/CVE-2023-45853
Code Behaviors & Features
Detect and mitigate GHSA-q5fm-55c2-v6j9 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →