[Secure-testing-commits] r56933 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon Oct 23 22:16:35 UTC 2017
Author: jmm
Date: 2017-10-23 22:16:35 +0000 (Mon, 23 Oct 2017)
New Revision: 56933
Modified:
data/CVE/list
Log:
lame no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-23 21:28:00 UTC (rev 56932)
+++ data/CVE/list 2017-10-23 22:16:35 UTC (rev 56933)
@@ -1808,12 +1808,14 @@
NOTE: Pull request: https://github.com/antirez/redis/pull/4365
CVE-2017-15046 (LAME 3.99.5 has a stack-based buffer overflow in unpack_read_samples ...)
- lame 3.99.5+repack1-8
+ [jessie] - lame <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/lame/bugs/479/
NOTE: Starting with 3.99.5+repack1-8 libsndfile is used to read the input file, marking that as the fixed
NOTE: version, although the internal lame code was only fixed in 3.100 (strictly speaking that would be
NOTE: severity:unimportant for stretch onwards, but we don't have suite-specific severity annotations
CVE-2017-15045 (LAME 3.99.5 has a heap-based buffer over-read in fill_buffer in ...)
- lame 3.99.5+repack1-8
+ [jessie] - lame <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/lame/bugs/478/
NOTE: Starting with 3.99.5+repack1-8 libsndfile is used to read the input file, marking that as the fixed
NOTE: version, although the internal lame code was only fixed in 3.100 (strictly speaking that would be
@@ -1938,6 +1940,7 @@
NOTE: https://sourceforge.net/p/lame/bugs/477/
CVE-2017-15018 (LAME 3.99.5 has a heap-based buffer over-read when handling a malformed ...)
- lame 3.99.5+repack1-8
+ [jessie] - lame <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/lame/bugs/480/
NOTE: Starting with 3.99.5+repack1-8 libsndfile is used to read the input file, marking that as the fixed
NOTE: version, although the internal lame code was only fixed in 3.100 (strictly speaking that would be
More information about the Secure-testing-commits
mailing list