[Git][security-tracker-team/security-tracker][master] add CVE-2017-1745{6,7} potential duplicates
Hugo Lefeuvre
hle at debian.org
Sat Dec 15 16:59:34 GMT 2018
Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ed3f077b by Hugo Lefeuvre at 2018-12-15T16:58:43Z
add CVE-2017-1745{6,7} potential duplicates
They might go through different paths but the underlying issue is the
same (NaN and Infinity values in audio files badly handled by the
library functions).
see https://github.com/erikd/libsndfile/pull/432 for more info
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -58010,12 +58010,14 @@ CVE-2017-17457 (The function d2ulaw_array() in ulaw.c of libsndfile 1.0.29pre1 m
[jessie] - libsndfile <no-dsa> (Minor issue)
[wheezy] - libsndfile <no-dsa> (Minor issue)
NOTE: https://github.com/erikd/libsndfile/issues/344
+ NOTE: Might be a duplicate of CVE-2017-14245/CVE-2017-14246
CVE-2017-17456 (The function d2alaw_array() in alaw.c of libsndfile 1.0.29pre1 may lead ...)
- libsndfile <unfixed> (low; bug #884735)
[stretch] - libsndfile <no-dsa> (Minor issue)
[jessie] - libsndfile <no-dsa> (Minor issue)
[wheezy] - libsndfile <no-dsa> (Minor issue)
NOTE: https://github.com/erikd/libsndfile/issues/344
+ NOTE: Might be a duplicate of CVE-2017-14245/CVE-2017-14246
CVE-2017-17455 (Mahara 16.10 before 16.10.7, 17.04 before 17.04.5, and 17.10 before ...)
- mahara <removed>
CVE-2017-17454 (Mahara 16.10 before 16.10.7 and 17.04 before 17.04.5 and 17.10 before ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ed3f077bbbe3cf910b6e9e92b2c7464c33af4edc
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ed3f077bbbe3cf910b6e9e92b2c7464c33af4edc
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181215/bffaeee6/attachment.html>
More information about the debian-security-tracker-commits
mailing list