[Git][security-tracker-team/security-tracker][master] First round of verified included uploads in 8.11
Salvatore Bonaccorso
carnil at debian.org
Sat Jun 23 10:14:26 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b8b16236 by Salvatore Bonaccorso at 2018-06-23T11:13:59+02:00
First round of verified included uploads in 8.11
- - - - -
2 changed files:
- data/CVE/list
- data/next-oldstable-point-update.txt
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -58776,17 +58776,17 @@ CVE-2017-9261 (In ImageMagick 7.0.5-6 Q16, the ReadMNGImage function in coders/p
CVE-2017-9260 (The TDStretchSSE::calcCrossCorr function in ...)
- soundtouch 1.9.2-3 (low; bug #870857)
[stretch] - soundtouch 1.9.2-2+deb9u1
- [jessie] - soundtouch <no-dsa> (Minor issue)
+ [jessie] - soundtouch 1.8.0-1+deb8u1
[wheezy] - soundtouch <no-dsa> (Minor issue)
CVE-2017-9259 (The TDStretch::acceptNewOverlapLength function in ...)
- soundtouch 1.9.2-3 (low; bug #870856)
[stretch] - soundtouch 1.9.2-2+deb9u1
- [jessie] - soundtouch <no-dsa> (Minor issue)
+ [jessie] - soundtouch 1.8.0-1+deb8u1
[wheezy] - soundtouch <no-dsa> (Minor issue)
CVE-2017-9258 (The TDStretch::processSamples function in ...)
- soundtouch 1.9.2-3 (low; bug #870854)
[stretch] - soundtouch 1.9.2-2+deb9u1
- [jessie] - soundtouch <no-dsa> (Minor issue)
+ [jessie] - soundtouch 1.8.0-1+deb8u1
[wheezy] - soundtouch <no-dsa> (Minor issue)
CVE-2017-9257 (The mp4ff_read_ctts function in common/mp4ff/mp4atom.c in Freeware ...)
{DLA-1077-1}
@@ -93288,7 +93288,7 @@ CVE-2016-7117 (Use-after-free vulnerability in the __sys_recvmmsg function in ..
CVE-2016-7115 (Buffer overflow in the handle_packet function in mactelnet.c in the ...)
{DLA-639-1}
- mactelnet 0.4.4-4 (bug #836320)
- [jessie] - mactelnet <no-dsa> (Minor issue, can be fixed via point release)
+ [jessie] - mactelnet 0.4.0-1+deb8u1
NOTE: https://github.com/haakonnessjoen/MAC-Telnet/commit/b69d11727d4f0f8cf719c79e3fb700f55ca03e9a
CVE-2016-7114 (A vulnerability has been identified in Firmware variant PROFINET IO ...)
NOT-FOR-US: Siemens
=====================================
data/next-oldstable-point-update.txt
=====================================
--- a/data/next-oldstable-point-update.txt
+++ b/data/next-oldstable-point-update.txt
@@ -1,11 +1,3 @@
-CVE-2016-7115
- [jessie] - mactelnet 0.4.0-1+deb8u1
-CVE-2017-9258
- [jessie] - soundtouch 1.8.0-1+deb8u1
-CVE-2017-9259
- [jessie] - soundtouch 1.8.0-1+deb8u1
-CVE-2017-9260
- [jessie] - soundtouch 1.8.0-1+deb8u1
CVE-2017-16879
[jessie] - ncurses 5.9+20140913-1+deb8u3
CVE-2017-17440
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b8b1623616f13ed14ab520faa2af0593fc789f74
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b8b1623616f13ed14ab520faa2af0593fc789f74
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180623/aa92bd63/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list