[Git][security-tracker-team/security-tracker][master] Add fixied information for CVE-2019-1010318/wavpack

Sun Jul 14 16:21:35 BST 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c07fb977 by Salvatore Bonaccorso at 2019-07-14T15:20:11Z
Add fixied information for CVE-2019-1010318/wavpack

It's not clear if this is actually a duplicate or just another stance of
an issue for wavpack relating to same upstream issue and same upstream
fix.

Clarification with MITRE pending, for the time beeing just mark it as
fixed with the repsective version which included the fix.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9527,7 +9527,8 @@ CVE-2019-1010319 (WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Unin
 	NOTE: https://github.com/dbry/WavPack/commit/33a0025d1d63ccd05d9dbaa6923d52b1446a62fe
 	NOTE: https://github.com/dbry/WavPack/issues/68
 CVE-2019-1010318 (WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialize ...)
-	- wavpack <unfixed> (low)
+	- wavpack 5.1.0-6 (low)
+	[stretch] - wavpack <no-dsa> (Minor issue)
 	NOTE: https://github.com/dbry/WavPack/commit/bc6cba3f552c44565f7f1e66dc1580189addb2b4
 	NOTE: https://github.com/dbry/WavPack/issues/67
 CVE-2019-1010317 (WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialize ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c07fb9770dbb2dac72c1e875cc89234374382cb9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c07fb9770dbb2dac72c1e875cc89234374382cb9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190714/1107c545/attachment-0001.html>
