[Secure-testing-commits] r54341 - data/CVE

Markus Koschany apo at moszumanska.debian.org
Sun Aug 6 01:23:19 UTC 2017


Author: apo
Date: 2017-08-06 01:23:19 +0000 (Sun, 06 Aug 2017)
New Revision: 54341

Modified:
   data/CVE/list
Log:
CVE-2017-11551,libid3tag: Mark as no-dsa for Wheezy.

Null-pointer dereference. Minor issue.


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-06 01:18:41 UTC (rev 54340)
+++ data/CVE/list	2017-08-06 01:23:19 UTC (rev 54341)
@@ -2409,6 +2409,7 @@
 	- libid3tag <unfixed> (bug #870333)
 	[stretch] - libid3tag <no-dsa> (Minor issue)
 	[jessie] - libid3tag <no-dsa> (Minor issue)
+	[wheezy] - libid3tag <no-dsa> (Minor issue)
 	NOTE: http://seclists.org/fulldisclosure/2017/Jul/85
 CVE-2017-11550 (The id3_ucs4_length function in ucs4.c in libid3tag 0.15.1b allows ...)
 	- libid3tag 0.15.1b-9 (bug #405801)




More information about the Secure-testing-commits mailing list