[Secure-testing-commits] r57839 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Nov 19 20:13:57 UTC 2017
Author: carnil
Date: 2017-11-19 20:13:56 +0000 (Sun, 19 Nov 2017)
New Revision: 57839
Modified:
data/CVE/list
Log:
Add todo for CVE-2017-15371
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-19 20:04:24 UTC (rev 57838)
+++ data/CVE/list 2017-11-19 20:13:56 UTC (rev 57839)
@@ -4373,6 +4373,7 @@
[stretch] - sox <no-dsa> (Minor issue)
[jessie] - sox <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1500570
+ TODO: check with maintainer, 14.4.2-1 with 0005-CVE-2017-15371.patch was meant to address the issue, but assertion still reached, cf #878809
CVE-2017-15370 (There is a heap-based buffer overflow in the ImaExpandS function of ...)
[experimental] - sox 14.4.2-1
- sox <unfixed> (bug #878810)
More information about the Secure-testing-commits
mailing list