[Git][security-tracker-team/security-tracker][master] add fix for CVE-2018-13139
Hugo Lefeuvre
hle at debian.org
Mon Dec 24 15:03:32 GMT 2018
Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f11d274e by Hugo Lefeuvre at 2018-12-24T15:03:05Z
add fix for CVE-2018-13139
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -25187,6 +25187,7 @@ CVE-2018-13140 (Druide Antidote through 9.5.1 on Windows and Linux allows remote
CVE-2018-13139 (A stack-based buffer overflow in psf_memset in common.c in libsndfile ...)
- libsndfile <unfixed> (unimportant)
NOTE: https://github.com/erikd/libsndfile/issues/397
+ NOTE: https://github.com/erikd/libsndfile/commit/aaea680337267bfb6d2544da878890ee7f1c5077
NOTE: Missing channel number check in sndfile-deinterleave program, not a
NOTE: security issue in the library.
CVE-2018-13138
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f11d274ecc5ad181acd397dde263d787b3e2cc08
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f11d274ecc5ad181acd397dde263d787b3e2cc08
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181224/05681437/attachment.html>
More information about the debian-security-tracker-commits
mailing list