[Git][security-tracker-team/security-tracker][master] 2 commits: Two audiofile issues fixed via unstable upload

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1523a3f0 by Salvatore Bonaccorso at 2019-04-05T15:57:47Z
Two audiofile issues fixed via unstable upload

- - - - -
28d0144a by Salvatore Bonaccorso at 2019-04-05T15:58:29Z
Remove one no-dsa tagged entry for buster as fix landed in unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -34805,7 +34805,7 @@ CVE-2018-17183 (Artifex Ghostscript before 9.25 allowed a user-writable error ex
 	NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=699708
 	NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=fb713b3818b52d8a6cf62c951eba2e1795ff9624
 CVE-2018-17095 (An issue has been discovered in mpruett Audio File Library (aka audiof ...)
-	- audiofile <unfixed> (low; bug #913166)
+	- audiofile 0.3.6-5 (low; bug #913166)
 	[stretch] - audiofile <no-dsa> (Minor issue)
 	[jessie] - audiofile <postponed> (Can be fixed along in future DLA)
 	NOTE: https://github.com/mpruett/audiofile/issues/50
@@ -44238,8 +44238,7 @@ CVE-2018-13441 (qh_help in Nagios Core version 4.4.1 and earlier is prone to a N
 	NOTE: https://gist.github.com/fakhrizulkifli/8df4a174158df69ebd765f824bd736b8
 	NOTE: https://github.com/NagiosEnterprises/nagioscore/commit/b1a92a3b52d292ccb601e77a0b29cb1e67ac9d76
 CVE-2018-13440 (The audiofile Audio File Library 0.3.6 has a NULL pointer dereference  ...)
-	- audiofile <unfixed> (low; bug #903499)
-	[buster] - audiofile <no-dsa> (Minor issue)
+	- audiofile 0.3.6-5 (low; bug #903499)
 	[stretch] - audiofile <no-dsa> (Minor issue)
 	[jessie] - audiofile <no-dsa> (Minor issue)
 	NOTE: https://github.com/mpruett/audiofile/issues/49



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/4b8254922966b37c1713d273cb2faaee92194f4a...28d0144a5d7bb8627d87e250fd6692d09e9b7d0d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/4b8254922966b37c1713d273cb2faaee92194f4a...28d0144a5d7bb8627d87e250fd6692d09e9b7d0d
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190405/05f71e3b/attachment.html>