[Secure-testing-commits] r18976 - in data: . CVE

Michael Gilbert mgilbert at alioth.debian.org
Mon Apr 16 17:58:42 UTC 2012


Author: mgilbert
Date: 2012-04-16 17:58:41 +0000 (Mon, 16 Apr 2012)
New Revision: 18976

Modified:
   data/CVE/list
   data/embedded-code-copies
Log:
libvorbisidec is a non-floating-point version of libvorbis and shares most of its code

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-04-16 17:58:26 UTC (rev 18975)
+++ data/CVE/list	2012-04-16 17:58:41 UTC (rev 18976)
@@ -4286,6 +4286,7 @@
 	- iceape <not-affected> (Only affects Firefox >= 4)
 CVE-2012-0444 (Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before ...)
 	{DSA-2412-1 DSA-2406-1 DSA-2402-1 DSA-2400-1}
+	- libvorbisidec <unfixed>
 	- libvorbis <unfixed>
 	- icedove <unfixed>
 	[lenny] - icedove <not-affected> (Vulnerable code not present)

Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies	2012-04-16 17:58:26 UTC (rev 18975)
+++ data/embedded-code-copies	2012-04-16 17:58:41 UTC (rev 18976)
@@ -1179,6 +1179,7 @@
 	[etch] - iceape <not-affected> (introduced in 2.0)
 	[lenny] - iceape <not-affected> (introduced in 2.0)
         - ia32-libs <unfixable> (embed)
+        - libvorbisidec <unfixed> (modified-embed)
 
 cairo
 	- iceweasel <not-affected> (uses xulrunner)




More information about the Secure-testing-commits mailing list