[Secure-testing-commits] r32550 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat Feb 28 14:38:15 UTC 2015


Author: carnil
Date: 2015-02-28 14:38:15 +0000 (Sat, 28 Feb 2015)
New Revision: 32550

Modified:
   data/CVE/list
Log:
Add reference to proposed patch for vorbis-tools

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-02-28 14:27:57 UTC (rev 32549)
+++ data/CVE/list	2015-02-28 14:38:15 UTC (rev 32550)
@@ -2521,6 +2521,7 @@
 	- opus-tools <unfixed> (unimportant)
 	NOTE: https://trac.xiph.org/ticket/2137
 	NOTE: No security impact
+	NOTE: proposed patch: http://lists.xiph.org/pipermail/vorbis-dev/2015-February/020423.html
 CVE-2014-9639 (Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote ...)
 	- vorbis-tools <unfixed> (low; bug #776086)
 	[wheezy] - vorbis-tools <no-dsa> (Minor issue)
@@ -2528,6 +2529,7 @@
 	- opus-tools <unfixed>
 	[wheezy] - opus-tools <no-dsa> (Minor issue)
 	NOTE: https://trac.xiph.org/ticket/2136
+	NOTE: proposed patch: http://lists.xiph.org/pipermail/vorbis-dev/2015-February/020423.html
 CVE-2014-9640 (oggenc/oggenc.c in vorbis-tools 1.4.0 allows remote attackers to cause ...)
 	- vorbis-tools 1.4.0-6 (bug #771363)
 	[wheezy] - vorbis-tools <no-dsa> (Minor issue)




More information about the Secure-testing-commits mailing list