[Secure-testing-commits] r53090 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jul 2 09:13:25 UTC 2017
Author: carnil
Date: 2017-07-02 09:13:25 +0000 (Sun, 02 Jul 2017)
New Revision: 53090
Modified:
data/CVE/list
Log:
Add CVE-2017-10683/mpg123
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-02 09:10:14 UTC (rev 53089)
+++ data/CVE/list 2017-07-02 09:13:25 UTC (rev 53090)
@@ -229,7 +229,9 @@
CVE-2017-10684 (In ncurses 6.0, there is a stack-based buffer overflow in the fmt_entry ...)
TODO: check
CVE-2017-10683 (In mpg123 1.25.0, there is a heap-based buffer over-read in the ...)
- TODO: check
+ - mpg123 <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1465819
+ NOTE: Duplicate of https://sourceforge.net/p/mpg123/bugs/252/
CVE-2017-10682 (SQL injection vulnerability in the administrative backend in Piwigo ...)
- piwigo <removed>
CVE-2017-10681 (Cross-site request forgery (CSRF) vulnerability in Piwigo through 2.9.1 ...)
More information about the Secure-testing-commits
mailing list