[Git][security-tracker-team/security-tracker][master] Add CVE-2018-11439/taglib
László Böszörményi
gcs at debian.org
Tue May 29 21:48:14 BST 2018
László Böszörményi pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0311d760 by Laszlo Boszormenyi (GCS) at 2018-05-29T20:46:26+00:00
Add CVE-2018-11439/taglib
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -231,8 +231,10 @@ CVE-2018-11440 (Liblouis 3.5.0 has a stack-based Buffer Overflow in the function
[stretch] - liblouis <no-dsa> (Minor issue)
[jessie] - liblouis <no-dsa> (Minor issue)
NOTE: https://github.com/liblouis/liblouis/issues/575
-CVE-2018-11439
+CVE-2018-11439 [remote information disclosure via a crafted audio file in taglib 1.11.1]
RESERVED
+ - taglib <unfixed>
+ NOTE: PoC: http://seclists.org/fulldisclosure/2018/May/49
CVE-2018-11438
RESERVED
CVE-2018-11437
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0311d76013a49f35aebd02221d84cbca3558a503
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0311d76013a49f35aebd02221d84cbca3558a503
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180529/7e892ff1/attachment.html>
More information about the debian-security-tracker-commits
mailing list