[Secure-testing-commits] r36882 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Tue Sep 29 09:10:11 UTC 2015
Author: sectracker
Date: 2015-09-29 09:10:11 +0000 (Tue, 29 Sep 2015)
New Revision: 36882
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-09-29 08:57:44 UTC (rev 36881)
+++ data/CVE/list 2015-09-29 09:10:11 UTC (rev 36882)
@@ -1521,6 +1521,7 @@
NOTE: https://savannah.gnu.org/bugs/?45713
NOTE: http://www.openwall.com/lists/oss-security/2015/09/01/1
CVE-2015-6749 (Buffer overflow in the aiff_open function in oggenc/audio.c in ...)
+ {DLA-317-1}
- vorbis-tools 1.4.0-7 (bug #797461)
NOTE: http://www.openwall.com/lists/oss-security/2015/08/29/1
NOTE: https://trac.xiph.org/ticket/2212
@@ -17517,12 +17518,14 @@
CVE-2014-9631
RESERVED
CVE-2014-9638 (oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial ...)
+ {DLA-317-1}
- vorbis-tools 1.4.0-7 (unimportant; bug #776086)
- opus-tools <unfixed> (unimportant; bug #780160)
NOTE: https://trac.xiph.org/ticket/2137
NOTE: No security impact
NOTE: proposed patch: http://lists.xiph.org/pipermail/vorbis-dev/2015-February/020423.html
CVE-2014-9639 (Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote ...)
+ {DLA-317-1}
- vorbis-tools 1.4.0-7 (low; bug #776086)
[jessie] - vorbis-tools <no-dsa> (Minor issue)
[wheezy] - vorbis-tools <no-dsa> (Minor issue)
@@ -17533,6 +17536,7 @@
NOTE: https://trac.xiph.org/ticket/2136
NOTE: proposed patch: http://lists.xiph.org/pipermail/vorbis-dev/2015-February/020423.html
CVE-2014-9640 (oggenc/oggenc.c in vorbis-tools 1.4.0 allows remote attackers to cause ...)
+ {DLA-317-1}
- vorbis-tools 1.4.0-6 (bug #771363)
[wheezy] - vorbis-tools <no-dsa> (Minor issue)
[squeeze] - vorbis-tools <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list