[Secure-testing-commits] r50745 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Apr 18 04:49:28 UTC 2017
Author: carnil
Date: 2017-04-18 04:49:28 +0000 (Tue, 18 Apr 2017)
New Revision: 50745
Modified:
data/CVE/list
Log:
Reference isiolated fix for CVE-2017-7697
But possibly it would be good to just upload 0.1.9 in next upload. Does
not seem to need a dsa for stable as well. From upstream:
> * src/src_sinc.c
> Fix a read beyond end of coefficent array problem uncovered by gcc-4.8's
> -fsanitize=address feature and reported by Cristian Rodr?\195?\173guez.
>
> Since this is reading filter coefficients from rodata memory and no write
> is possible, is is not exploitable from a security point of view.
>
> Solution was to reduce the half_coeff_len value for each filter by one.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-18 04:15:29 UTC (rev 50744)
+++ data/CVE/list 2017-04-18 04:49:28 UTC (rev 50745)
@@ -517,6 +517,7 @@
- libsamplerate <unfixed> (bug #860159)
NOTE: https://github.com/erikd/libsamplerate/issues/11
NOTE: https://blogs.gentoo.org/ago/2017/04/11/libsamplerate-global-buffer-overflow-in-calc_output_single-src_sinc-c/
+ NOTE: Fixed by: https://github.com/erikd/libsamplerate/commit/c3b66186656de44da18b7058aec099dbe782dd0b
CVE-2017-7696 (SAP AS JAVA SSO Authentication Library 2.0 through 3.0 allow remote ...)
NOT-FOR-US: SAP
CVE-2017-7695 (Unrestricted File Upload exists in BigTree CMS before 4.2.17: if an ...)
More information about the Secure-testing-commits
mailing list