[Secure-testing-commits] r54163 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Aug 1 08:39:09 UTC 2017
Author: carnil
Date: 2017-08-01 08:39:09 +0000 (Tue, 01 Aug 2017)
New Revision: 54163
Modified:
data/CVE/list
Log:
Add timidity entries
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-01 08:35:19 UTC (rev 54162)
+++ data/CVE/list 2017-08-01 08:39:09 UTC (rev 54163)
@@ -683,13 +683,22 @@
NOTE: http://seclists.org/fulldisclosure/2017/Jul/85
NOTE: Addressed by the 11_unknown_encoding.dpatch patch
CVE-2017-11549 (The play_midi function in playmidi.c in TiMidity++ 2.14.0 allows remote ...)
- TODO: check
+ - timidity <unfixed>
+ [stretch] - timidity <no-dsa> (Minor issue)
+ [jessie] - timidity <no-dsa> (Minor issue)
+ NOTE: http://seclists.org/fulldisclosure/2017/Jul/83
CVE-2017-11548 (The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0 ...)
TODO: check
CVE-2017-11547 (The resample_gauss function in resample.c in TiMidity++ 2.14.0 allows ...)
- TODO: check
+ - timidity <unfixed>
+ [stretch] - timidity <no-dsa> (Minor issue)
+ [jessie] - timidity <no-dsa> (Minor issue)
+ NOTE: http://seclists.org/fulldisclosure/2017/Jul/83
CVE-2017-11546 (The insert_note_steps function in readmidi.c in TiMidity++ 2.14.0 ...)
- TODO: check
+ - timidity <unfixed>
+ [stretch] - timidity <no-dsa> (Minor issue)
+ [jessie] - timidity <no-dsa> (Minor issue)
+ NOTE: http://seclists.org/fulldisclosure/2017/Jul/83
CVE-2017-11545 (tcpdump 4.9.0 has a Segmentation Violation in the compressed_sl_print ...)
- tcpdump <unfixed>
NOTE: https://github.com/hackerlib/hackerlib-vul/tree/master/tcpdump-vul/segv/print-sl
More information about the Secure-testing-commits
mailing list