[Secure-testing-commits] r49647 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon Mar 13 18:56:20 UTC 2017
Author: jmm
Date: 2017-03-13 18:56:20 +0000 (Mon, 13 Mar 2017)
New Revision: 49647
Modified:
data/CVE/list
Log:
add audiofile patch and bug references
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-13 18:38:52 UTC (rev 49646)
+++ data/CVE/list 2017-03-13 18:56:20 UTC (rev 49647)
@@ -6,46 +6,68 @@
RESERVED
- audiofile <unfixed>
NOTE: https://blogs.gentoo.org/ago/2017/02/20/audiofile-multiple-ubsan-crashes/
+ NOTE: https://github.com/mpruett/audiofile/issues/41
+ NOTE: https://github.com/antlarr/audiofile/commit/beacc44eb8cdf6d58717ec1a5103c5141f1b37f9
CVE-2017-6838
RESERVED
- audiofile <unfixed>
NOTE: https://blogs.gentoo.org/ago/2017/02/20/audiofile-multiple-ubsan-crashes/
+ NOTE: https://github.com/mpruett/audiofile/issues/41
+ NOTE: https://github.com/antlarr/audiofile/commit/7d65f89defb092b63bcbc5d98349fb222ca73b3c
CVE-2017-6837
RESERVED
- audiofile <unfixed>
NOTE: https://blogs.gentoo.org/ago/2017/02/20/audiofile-multiple-ubsan-crashes/
+ NOTE: https://github.com/mpruett/audiofile/issues/41
+ NOTE: https://github.com/antlarr/audiofile/commit/c48e4c6503f7dabd41f11d4c9c7b7f8960e7f2c0
CVE-2017-6836
RESERVED
- audiofile <unfixed>
NOTE: https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-expand3to4modulerun-simplemodule-h
+ NOTE: https://github.com/mpruett/audiofile/issues/40
+ NOTE: https://github.com/mpruett/audiofile/commit/7d65f89defb092b63bcbc5d98349fb222ca73b3c
CVE-2017-6835
RESERVED
- audiofile <unfixed>
NOTE: https://blogs.gentoo.org/ago/2017/02/20/audiofile-divide-by-zero-in-blockcodecreset1-blockcodec-cpp
+ NOTE: https://github.com/mpruett/audiofile/issues/39
+ NOTE: https://github.com/mpruett/audiofile/commit/c48e4c6503f7dabd41f11d4c9c7b7f8960e7f2c0
CVE-2017-6834
RESERVED
- audiofile <unfixed>
NOTE: https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-ulaw2linear_buf-g711-cpp
+ NOTE: https://github.com/mpruett/audiofile/issues/38
+ NOTE: https://github.com/mpruett/audiofile/commit/7d65f89defb092b63bcbc5d98349fb222ca73b3c
CVE-2017-6833
RESERVED
- audiofile <unfixed>
NOTE: https://blogs.gentoo.org/ago/2017/02/20/audiofile-divide-by-zero-in-blockcodecrunpull-blockcodec-cpp
+ NOTE: https://github.com/mpruett/audiofile/issues/37
+ NOTE: https://github.com/mpruett/audiofile/commit/c48e4c6503f7dabd41f11d4c9c7b7f8960e7f2c0
CVE-2017-6832
RESERVED
- audiofile <unfixed>
NOTE: https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-msadpcmdecodeblock-msadpcm-cpp
+ NOTE: https://github.com/mpruett/audiofile/issues/36
+ NOTE: https://github.com/mpruett/audiofile/commit/c48e4c6503f7dabd41f11d4c9c7b7f8960e7f2c0
CVE-2017-6831
RESERVED
- audiofile <unfixed>
NOTE: https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-imadecodeblockwave-ima-cpp
+ NOTE: https://github.com/mpruett/audiofile/issues/35
+ NOTE: https://github.com/antlarr/audiofile/commit/a2e9eab8ea87c4ffc494d839ebb4ea145eb9f2e6
CVE-2017-6830
RESERVED
- audiofile <unfixed>
NOTE: https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-alaw2linear_buf-g711-cpp
+ NOTE: https://github.com/mpruett/audiofile/issues/34
+ NOTE: https://github.com/mpruett/audiofile/commit/7d65f89defb092b63bcbc5d98349fb222ca73b3c
CVE-2017-6829
RESERVED
- audiofile <unfixed>
NOTE: https://blogs.gentoo.org/ago/2017/02/20/audiofile-global-buffer-overflow-in-decodesample-ima-cpp
+ NOTE: https://github.com/mpruett/audiofile/pull/43/commits/25eb00ce913452c2e614548d7df93070bf0d066f
+ NOTE: https://github.com/mpruett/audiofile/issues/33
CVE-2017-6828
RESERVED
CVE-2017-6827
More information about the Secure-testing-commits
mailing list