[Git][security-tracker-team/security-tracker][master] Reserve DLA-1582-1 for liblivemedia

Tue Nov 20 21:09:39 GMT 2018

Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bdba62c7 by Hugo Lefeuvre at 2018-11-20T21:09:09Z
Reserve DLA-1582-1 for liblivemedia

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[20 Nov 2018] DLA-1582-1 liblivemedia - security update
+	{CVE-2018-4013}
+	[jessie] - liblivemedia 2014.01.13-1+deb8u1
 [20 Nov 2018] DLA-1581-1 uriparser - security update
 	{CVE-2018-19198 CVE-2018-19199 CVE-2018-19200}
 	[jessie] - uriparser 0.8.0.1-2+deb8u1


=====================================
data/dla-needed.txt
=====================================
@@ -39,10 +39,6 @@ libav
   NOTE: 20180529: Help is welcome, feel free to mail Hugo. Still up-to-date. Help needed for CVE triage and patch development.
   NOTE: 20180529: Just contacted some of the CVE reporters to ask for the reproducers, CC-ed team ML.
 --
-liblivemedia (Hugo Lefeuvre)
-  NOTE: CVE entry says remote: "no", but it looks like a pretty exploitable remote vulnerability
-  NOTE: (remote code execution)... CVE is very well documented so I think this is worth a patch
---
 libphp-phpmailer (Abhijith PA)
 --
 linux (Ben Hutchings)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bdba62c784010cac360999df151cee76e20277fe

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bdba62c784010cac360999df151cee76e20277fe
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181120/5e15c46e/attachment-0001.html>
