[Secure-testing-commits] r54163 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Aug 1 08:39:09 UTC 2017


Author: carnil
Date: 2017-08-01 08:39:09 +0000 (Tue, 01 Aug 2017)
New Revision: 54163

Modified:
   data/CVE/list
Log:
Add timidity entries

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-01 08:35:19 UTC (rev 54162)
+++ data/CVE/list	2017-08-01 08:39:09 UTC (rev 54163)
@@ -683,13 +683,22 @@
 	NOTE: http://seclists.org/fulldisclosure/2017/Jul/85
 	NOTE: Addressed by the 11_unknown_encoding.dpatch patch
 CVE-2017-11549 (The play_midi function in playmidi.c in TiMidity++ 2.14.0 allows remote ...)
-	TODO: check
+	- timidity <unfixed>
+	[stretch] - timidity <no-dsa> (Minor issue)
+	[jessie] - timidity <no-dsa> (Minor issue)
+	NOTE: http://seclists.org/fulldisclosure/2017/Jul/83
 CVE-2017-11548 (The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0 ...)
 	TODO: check
 CVE-2017-11547 (The resample_gauss function in resample.c in TiMidity++ 2.14.0 allows ...)
-	TODO: check
+	- timidity <unfixed>
+	[stretch] - timidity <no-dsa> (Minor issue)
+	[jessie] - timidity <no-dsa> (Minor issue)
+	NOTE: http://seclists.org/fulldisclosure/2017/Jul/83
 CVE-2017-11546 (The insert_note_steps function in readmidi.c in TiMidity++ 2.14.0 ...)
-	TODO: check
+	- timidity <unfixed>
+	[stretch] - timidity <no-dsa> (Minor issue)
+	[jessie] - timidity <no-dsa> (Minor issue)
+	NOTE: http://seclists.org/fulldisclosure/2017/Jul/83
 CVE-2017-11545 (tcpdump 4.9.0 has a Segmentation Violation in the compressed_sl_print ...)
 	- tcpdump <unfixed>
 	NOTE: https://github.com/hackerlib/hackerlib-vul/tree/master/tcpdump-vul/segv/print-sl




More information about the Secure-testing-commits mailing list