[Secure-testing-commits] r56383 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Oct 3 19:30:43 UTC 2017
Author: carnil
Date: 2017-10-03 19:30:42 +0000 (Tue, 03 Oct 2017)
New Revision: 56383
Modified:
data/CVE/list
Log:
Add two separate bugs for libgig issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-03 19:26:23 UTC (rev 56382)
+++ data/CVE/list 2017-10-03 19:30:42 UTC (rev 56383)
@@ -5292,7 +5292,7 @@
NOTE: Not reproducible in wheezy/jessie/stretch/sid(0.25-3.1) => "The memory contains data of an unknown image type"
NOTE: Reproducible in experimental (0.26-1).
CVE-2017-12954 (The gig::Region::GetSampleFromWavePool function in gig.cpp in libgig ...)
- - libgig <unfixed> (low; bug #873718)
+ - libgig <unfixed> (low; bug #877652)
[stretch] - libgig <no-dsa> (Minor issue)
[jessie] - libgig <no-dsa> (Minor issue)
[wheezy] - libgig <no-dsa> (Minor issue)
@@ -5313,7 +5313,7 @@
NOTE: http://seclists.org/fulldisclosure/2017/Aug/39 (provides repoducer files)
NOTE: http://svn.linuxsampler.org/cgi-bin/viewvc.cgi?view=revision&revision=3348
CVE-2017-12951 (The gig::DimensionRegion::CreateVelocityTable function in gig.cpp in ...)
- - libgig <unfixed> (low; bug #873718)
+ - libgig <unfixed> (low; bug #877651)
[stretch] - libgig <no-dsa> (Minor issue)
[jessie] - libgig <no-dsa> (Minor issue)
[wheezy] - libgig <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list