[Secure-testing-commits] r54150 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Aug 1 05:16:37 UTC 2017
Author: carnil
Date: 2017-08-01 05:16:37 +0000 (Tue, 01 Aug 2017)
New Revision: 54150
Modified:
data/CVE/list
Log:
Add three issues in sox
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-01 04:34:35 UTC (rev 54149)
+++ data/CVE/list 2017-08-01 05:16:37 UTC (rev 54150)
@@ -1175,9 +1175,15 @@
NOTE: https://github.com/ImageMagick/ImageMagick/issues/518
NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/224bc946b24824a77e8e8c52ee07e9bc65796e30
CVE-2017-11359 (The wavwritehdr function in wav.c in Sound eXchange (SoX) 14.4.2 allows ...)
- TODO: check
+ - sox <unfixed>
+ [stretch] - sox <no-dsa> (Minor issue)
+ [jessie] - sox <no-dsa> (Minor issue)
+ NOTE: http://seclists.org/fulldisclosure/2017/Jul/81
CVE-2017-11358 (The read_samples function in hcom.c in Sound eXchange (SoX) 14.4.2 ...)
- TODO: check
+ - sox <unfixed>
+ [stretch] - sox <no-dsa> (Minor issue)
+ [jessie] - sox <no-dsa> (Minor issue)
+ NOTE: http://seclists.org/fulldisclosure/2017/Jul/81
CVE-2017-11357
RESERVED
CVE-2017-11356
@@ -1284,7 +1290,10 @@
CVE-2017-11333 (The vorbis_analysis_wrote function in lib/block.c in Xiph.Org libvorbis ...)
TODO: check
CVE-2017-11332 (The startread function in wav.c in Sound eXchange (SoX) 14.4.2 allows ...)
- TODO: check
+ - sox <unfixed>
+ [stretch] - sox <no-dsa> (Minor issue)
+ [jessie] - sox <no-dsa> (Minor issue)
+ NOTE: http://seclists.org/fulldisclosure/2017/Jul/81
CVE-2017-11331 (The wav_open function in oggenc/audio.c in Xiph.Org vorbis-tools 1.4.0 ...)
TODO: check
CVE-2017-11330 (The DivFixppCore::avi_header_fix function in DivFix++Core.cpp in ...)
More information about the Secure-testing-commits
mailing list