[Git][security-tracker-team/security-tracker][master] Add CVE-2017-6888/flac
Salvatore Bonaccorso
carnil at debian.org
Fri Apr 27 05:41:02 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0f0d8626 by Salvatore Bonaccorso at 2018-04-27T06:40:27+02:00
Add CVE-2017-6888/flac
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -59817,7 +59817,9 @@ CVE-2017-6890 (A boundary error within the "foveon_load_camf()" functi
CVE-2017-6889 (An integer overflow error within the "foveon_load_camf()" function ...)
NOT-FOR-US: libraw demosaic extension (not packaged in Debian)
CVE-2017-6888 (An error in the "read_metadata_vorbiscomment_()" function ...)
- TODO: check
+ - flac <unfixed>
+ NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2017-7/
+ NOTE: https://git.xiph.org/?p=flac.git;a=commit;h=4f47b63e9c971e6391590caf00a0f2a5ed612e67
CVE-2017-6887 (A boundary error within the "parse_tiff_ifd()" function ...)
{DSA-3950-1 DLA-1057-1}
- libraw 0.18.2-2 (bug #864183)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0f0d8626f1f24479736831fbbd895c6cdee79e7d
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0f0d8626f1f24479736831fbbd895c6cdee79e7d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180427/41437fff/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list