[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add fixing version for CVE-2017-11551/libid3tag
Salvatore Bonaccorso
carnil at debian.org
Sun Jan 7 12:38:11 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
161e427e by Salvatore Bonaccorso at 2018-01-07T13:37:03+01:00
Add fixing version for CVE-2017-11551/libid3tag
Cf: https://bugs.debian.org/870333#10
Thanks: Kurt Roeckx
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -29806,11 +29806,9 @@ CVE-2017-11552 (The mad_decoder_run function in decoder.c in libmad 0.15.1b allo
[wheezy] - libmad <no-dsa> (Minor issue)
NOTE: http://seclists.org/fulldisclosure/2017/Jul/94
CVE-2017-11551 (The id3_field_parse function in field.c in libid3tag 0.15.1b allows ...)
- - libid3tag <unfixed> (bug #870333)
- [stretch] - libid3tag <no-dsa> (Minor issue)
- [jessie] - libid3tag <no-dsa> (Minor issue)
- [wheezy] - libid3tag <no-dsa> (Minor issue)
+ - libid3tag 0.15.1b-5 (bug #870333)
NOTE: http://seclists.org/fulldisclosure/2017/Jul/85
+ NOTE: Same issue as #304913
CVE-2017-11550 (The id3_ucs4_length function in ucs4.c in libid3tag 0.15.1b allows ...)
- libid3tag 0.15.1b-9 (bug #405801)
NOTE: http://seclists.org/fulldisclosure/2017/Jul/85
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/161e427ee358cfcd6ed5267ce623c2a2d6cc1cdd
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/161e427ee358cfcd6ed5267ce623c2a2d6cc1cdd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180107/bb3ca189/attachment-0001.html>
More information about the Secure-testing-commits
mailing list