[Secure-testing-commits] r58516 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Dec 13 20:23:57 UTC 2017
Author: carnil
Date: 2017-12-13 20:23:57 +0000 (Wed, 13 Dec 2017)
New Revision: 58516
Modified:
data/CVE/list
Log:
Reference upstream issues for aubio issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-13 18:44:00 UTC (rev 58515)
+++ data/CVE/list 2017-12-13 20:23:57 UTC (rev 58516)
@@ -39,12 +39,14 @@
NOTE: https://github.com/IvanCql/vulnerability/blob/master/An%20NULL%20pointer%20dereference(DoS)%20Vulnerability%20was%20found%20in%20function%20swri_audio_convert%20of%20ffmpeg%20libswresample.md
NOTE: aubio initializes libswresample with 2 channels and then passes data
NOTE: that contains just one channel. Not an issue in src:ffmpeg.
+ NOTE: https://github.com/aubio/aubio/issues/137
CVE-2017-17554 (A NULL pointer dereference (DoS) Vulnerability was found in the ...)
- aubio <unfixed> (low; bug #884237)
[stretch] - aubio <no-dsa> (Minor issue)
[jessie] - aubio <no-dsa> (Minor issue)
[wheezy] - aubio <no-dsa> (Minor issue)
NOTE: https://github.com/IvanCql/vulnerability/blob/master/An%20NULL%20pointer%20dereference(DoS)%20Vulnerability%20was%20found%20in%20function%20%20aubio_source_avcodec_readframe%20of%20aubio.md
+ NOTE: https://github.com/aubio/aubio/issues/137
CVE-2017-17553 (The Dolphin Browser for Android 12.0.2 suffers from an insecure parsing ...)
NOT-FOR-US: Dolphin Browser for Android
CVE-2017-17552
More information about the Secure-testing-commits
mailing list