[Secure-testing-commits] r56782 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Oct 17 11:16:51 UTC 2017
Author: carnil
Date: 2017-10-17 11:16:51 +0000 (Tue, 17 Oct 2017)
New Revision: 56782
Modified:
data/CVE/list
Log:
Update CVE-2017-15185/mp3splt
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-17 10:30:29 UTC (rev 56781)
+++ data/CVE/list 2017-10-17 11:16:51 UTC (rev 56782)
@@ -839,7 +839,11 @@
RESERVED
CVE-2017-15185 (plugins/ogg.c in Libmp3splt 0.9.2 calls the libvorbis ...)
- mp3splt 2.6.2+20170630-2
+ [jessie] - mp3splt <not-affected> (Vulnerable code not present)
[wheezy] - mp3splt <not-affected> (Vulnerable code does not exist)
+ - libmp3splt <unfixed>
+ [stretch] - libmp3splt <no-dsa> (Minor issue)
+ [jessie] - libmp3splt <no-dsa> (Minor issue)
NOTE: https://anonscm.debian.org/cgit/users/ron/mp3splt.git/commit/?id=18f018cd774cb931116ce06a520dc0c5f9443932
CVE-2017-15184
RESERVED
More information about the Secure-testing-commits
mailing list