[Git][security-tracker-team/security-tracker][master] Track aubio fixes in unstable

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
741464c7 by Salvatore Bonaccorso at 2018-09-10T19:08:48Z
Track aubio fixes in unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5504,17 +5504,17 @@ CVE-2018-14525
 CVE-2018-14524 (dwg_decode_eed in decode.c in GNU LibreDWG before 0.6 leads to a ...)
 	- libredwg <itp> (bug #595191)
 CVE-2018-14523 (An issue was discovered in aubio 0.4.6. A buffer over-read can occur in ...)
-	- aubio <unfixed> (bug #904906)
+	- aubio 0.4.6-1 (bug #904906)
 	[stretch] - aubio <no-dsa> (Minor issue)
 	[jessie] - aubio <no-dsa> (Minor issue)
 	NOTE: https://github.com/aubio/aubio/issues/189
 CVE-2018-14522 (An issue was discovered in aubio 0.4.6. A SEGV signal can occur in ...)
-	- aubio <unfixed> (bug #904907)
+	- aubio 0.4.6-1 (bug #904907)
 	[stretch] - aubio <no-dsa> (Minor issue)
 	[jessie] - aubio <no-dsa> (Minor issue)
 	NOTE: https://github.com/aubio/aubio/issues/188
 CVE-2018-14521 (An issue was discovered in aubio 0.4.6. A SEGV signal can occur in ...)
-	- aubio <unfixed> (bug #904908)
+	- aubio 0.4.6-1 (bug #904908)
 	[stretch] - aubio <no-dsa> (Minor issue)
 	[jessie] - aubio <no-dsa> (Minor issue)
 	NOTE: https://github.com/aubio/aubio/issues/187
@@ -41479,7 +41479,7 @@ CVE-2017-17557 (In Foxit Reader before 9.1 and Foxit PhantomPDF before 9.1, a fl
 CVE-2017-17556 (A debug tool in Synaptics TouchPad drivers allows local users with ...)
 	NOT-FOR-US: debug tool in Synaptics TouchPad drivers
 CVE-2017-17555 (The swri_audio_convert function in audioconvert.c in FFmpeg ...)
-	- aubio <unfixed> (low; bug #884232)
+	- aubio 0.4.6-1 (low; bug #884232)
 	[stretch] - aubio <no-dsa> (Minor issue)
 	[jessie] - aubio <no-dsa> (Minor issue)
 	[wheezy] - aubio <no-dsa> (Minor issue)
@@ -41489,7 +41489,7 @@ CVE-2017-17555 (The swri_audio_convert function in audioconvert.c in FFmpeg ...)
 	NOTE: that contains just one channel. Not an issue in src:ffmpeg.
 	NOTE: https://github.com/aubio/aubio/issues/137
 CVE-2017-17554 (A NULL pointer dereference (DoS) Vulnerability was found in the ...)
-	- aubio <unfixed> (low; bug #884237)
+	- aubio 0.4.6-1 (low; bug #884237)
 	[stretch] - aubio <no-dsa> (Minor issue)
 	[jessie] - aubio <no-dsa> (Minor issue)
 	[wheezy] - aubio <no-dsa> (Minor issue)
@@ -44530,7 +44530,7 @@ CVE-2017-17056 (The ZKTime Web Software 2.0.1.12280 allows the Administrator to
 CVE-2017-17055 (Artica Web Proxy before 3.06.112911 allows remote attackers to execute ...)
 	NOT-FOR-US: Artica Web Proxy
 CVE-2017-17054 (In aubio 0.4.6, a divide-by-zero error exists in the function ...)
-	- aubio <unfixed> (bug #883355)
+	- aubio 0.4.6-1 (bug #883355)
 	[stretch] - aubio <no-dsa> (Minor issue)
 	[jessie] - aubio <not-affected> (Vulnerability introduced in 0.4.3)
 	[wheezy] - aubio <not-affected> (Vulnerability introduced in 0.4.3)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/741464c70c25e7cb13166ee0203a1d87dba2c937

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/741464c70c25e7cb13166ee0203a1d87dba2c937
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180910/8d85b3c5/attachment-0001.html>