[Secure-testing-commits] r54341 - data/CVE
Markus Koschany
apo at moszumanska.debian.org
Sun Aug 6 01:23:19 UTC 2017
Author: apo
Date: 2017-08-06 01:23:19 +0000 (Sun, 06 Aug 2017)
New Revision: 54341
Modified:
data/CVE/list
Log:
CVE-2017-11551,libid3tag: Mark as no-dsa for Wheezy.
Null-pointer dereference. Minor issue.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-06 01:18:41 UTC (rev 54340)
+++ data/CVE/list 2017-08-06 01:23:19 UTC (rev 54341)
@@ -2409,6 +2409,7 @@
- libid3tag <unfixed> (bug #870333)
[stretch] - libid3tag <no-dsa> (Minor issue)
[jessie] - libid3tag <no-dsa> (Minor issue)
+ [wheezy] - libid3tag <no-dsa> (Minor issue)
NOTE: http://seclists.org/fulldisclosure/2017/Jul/85
CVE-2017-11550 (The id3_ucs4_length function in ucs4.c in libid3tag 0.15.1b allows ...)
- libid3tag 0.15.1b-9 (bug #405801)
More information about the Secure-testing-commits
mailing list