[Secure-testing-commits] r8536 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Wed Apr 16 08:13:32 UTC 2008
Author: nion
Date: 2008-04-16 08:13:31 +0000 (Wed, 16 Apr 2008)
New Revision: 8536
Modified:
data/CVE/list
Log:
xine-lib added to CVE-2008-1686
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-04-15 22:38:07 UTC (rev 8535)
+++ data/CVE/list 2008-04-16 08:13:31 UTC (rev 8536)
@@ -1,6 +1,3 @@
-CVE-2008-XXXX [insufficient boundary check in speex audio decoder of xine-lib]
- - xine-lib 1.1.12-1 (medium)
- NOTE: might be added to CVE-2008-1686
CVE-2008-XXXX [secilia insecure tmp file usage]
- cecilia <unfixed> (low; bug #476321)
CVE-2008-1781
@@ -209,6 +206,7 @@
CVE-2008-1686 (Uncontrolled array index in Speex 1.1.12 and earlier, as used in ...)
- speex 1.2~beta2-1 (medium)
- libfishsound 0.7.0-2.2 (medium; bug #475152)
+ - xine-lib 1.1.12-1 (medium)
CVE-2008-1685 (gcc 4.2.0 through 4.3.0 in GNU Compiler Collection, when casts are not ...)
TODO: check
NOTE: dup of CVE-2006-1902 which is fixed in Debian?
More information about the Secure-testing-commits
mailing list