[Secure-testing-commits] r56740 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Oct 16 09:22:28 UTC 2017
Author: carnil
Date: 2017-10-16 09:22:28 +0000 (Mon, 16 Oct 2017)
New Revision: 56740
Modified:
data/CVE/list
Log:
Add three sox issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-16 09:22:01 UTC (rev 56739)
+++ data/CVE/list 2017-10-16 09:22:28 UTC (rev 56740)
@@ -17,11 +17,14 @@
CVE-2017-15373 (E-Sic 1.0 allows SQL injection via the q parameter to ...)
NOT-FOR-US: E-Sic
CVE-2017-15372 (There is a stack-based buffer overflow in the ...)
- TODO: check
+ - sox <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1500553
CVE-2017-15371 (There is a reachable assertion abort in the function ...)
- TODO: check
+ - sox <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1500570
CVE-2017-15370 (There is a heap-based buffer overflow in the ImaExpandS function of ...)
- TODO: check
+ - sox <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1500554
CVE-2017-15369 (The build_filter_chain function in pdf/pdf-stream.c in Artifex MuPDF ...)
- mupdf <undetermined>
NOTE: http://git.ghostscript.com/?p=mupdf.git;h=c2663e51238ec8256da7fc61ad580db891d9fe9a
More information about the Secure-testing-commits
mailing list