[Secure-testing-commits] r57842 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Nov 20 05:59:51 UTC 2017
Author: carnil
Date: 2017-11-20 05:59:51 +0000 (Mon, 20 Nov 2017)
New Revision: 57842
Modified:
data/CVE/list
Log:
Record fixing version in experimental for CVE-2017-15371
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-19 21:45:54 UTC (rev 57841)
+++ data/CVE/list 2017-11-20 05:59:51 UTC (rev 57842)
@@ -4387,11 +4387,11 @@
[jessie] - sox <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1500553
CVE-2017-15371 (There is a reachable assertion abort in the function ...)
+ [experimental] - sox 14.4.2-1
- sox <unfixed> (bug #878809)
[stretch] - sox <no-dsa> (Minor issue)
[jessie] - sox <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1500570
- TODO: check with maintainer, 14.4.2-1 with 0005-CVE-2017-15371.patch was meant to address the issue, but assertion still reached, cf #878809
CVE-2017-15370 (There is a heap-based buffer overflow in the ImaExpandS function of ...)
[experimental] - sox 14.4.2-1
- sox <unfixed> (bug #878810)
More information about the Secure-testing-commits
mailing list