[Git][security-tracker-team/security-tracker][master] Update information on CVE-2014-8145/sox
Salvatore Bonaccorso
carnil at debian.org
Fri Feb 1 13:11:22 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
cf61b827 by Salvatore Bonaccorso at 2019-02-01T13:10:20Z
Update information on CVE-2014-8145/sox
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -183957,7 +183957,9 @@ CVE-2014-8146 (The resolveImplicitLevels function in common/ubidi.c in the Unico
NOTE: Patch: http://bugs.icu-project.org/trac/changeset/37162
CVE-2014-8145 (Multiple heap-based buffer overflows in Sound eXchange (SoX) 14.4.1 ...)
{DSA-3112-1 DLA-128-1}
- - sox 14.4.1-5 (bug #773720)
+ - sox 14.4.2-2 (bug #773720)
+ NOTE: The two needed patches were added in 14.4.1-5 but not to the series file
+ NOTE: so the patches got not applied during build.
CVE-2014-8144 (Cross-site request forgery (CSRF) vulnerability in doorkeeper before ...)
NOT-FOR-US: doorkeeper OAuth provider
CVE-2014-8143 (Samba 4.0.x before 4.0.24, 4.1.x before 4.1.16, and 4.2.x before ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cf61b8270fd9b9e3aa56bbe9db4d73980cf4031e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cf61b8270fd9b9e3aa56bbe9db4d73980cf4031e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190201/d3af2ece/attachment.html>
More information about the debian-security-tracker-commits
mailing list