[Secure-testing-commits] r55218 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Aug 30 04:25:26 UTC 2017
Author: carnil
Date: 2017-08-30 04:25:26 +0000 (Wed, 30 Aug 2017)
New Revision: 55218
Modified:
data/CVE/list
Log:
Add CVE-2017-12797/mpg123, fixed in 1.25.5
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-30 04:25:16 UTC (rev 55217)
+++ data/CVE/list 2017-08-30 04:25:26 UTC (rev 55218)
@@ -2723,7 +2723,9 @@
CVE-2017-12798 (Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via the q ...)
NOT-FOR-US: NexusPHP
CVE-2017-12797 (Integer overflow in the INT123_parse_new_id3 function in the ID3 ...)
- TODO: check
+ - mpg123 1.25.6-1
+ NOTE: https://sourceforge.net/p/mpg123/bugs/254/
+ NOTE: https://sourceforge.net/p/mpg123/mailman/message/35987663/
CVE-2017-12796
RESERVED
CVE-2017-12795
More information about the Secure-testing-commits
mailing list