[Git][security-tracker-team/security-tracker][master] Adjust version for mp3gain in CVE-2017-144{08,09,10}

Salvatore Bonaccorso carnil at debian.org
Sat Nov 7 18:58:08 GMT 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b02f8b71 by Salvatore Bonaccorso at 2020-11-07T19:57:21+01:00
Adjust version for mp3gain in CVE-2017-144{08,09,10}

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -190489,15 +190489,15 @@ CVE-2017-14411 (A stack-based buffer overflow was discovered in copy_mp in inter
 	[wheezy] - mp3gain <end-of-life>
 	NOTE: https://blogs.gentoo.org/ago/2017/09/08/mp3gain-stack-based-buffer-overflow-in-copy_mp-mpglibdblinterface-c/
 CVE-2017-14410 (A buffer over-read was discovered in III_i_stereo in layer3.c in mpgli ...)
-	- mp3gain CVE-2018-10776
+	- mp3gain 1.6.2-1
 	[wheezy] - mp3gain <end-of-life>
 	NOTE: https://blogs.gentoo.org/ago/2017/09/08/mp3gain-global-buffer-overflow-in-iii_i_stereo-mpglibdbllayer3-c/
 CVE-2017-14409 (A buffer overflow was discovered in III_dequantize_sample in layer3.c  ...)
-	- mp3gain CVE-2018-10776
+	- mp3gain 1.6.2-1
 	[wheezy] - mp3gain <end-of-life>
 	NOTE: https://blogs.gentoo.org/ago/2017/09/08/mp3gain-global-buffer-overflow-in-iii_dequantize_sample-mpglibdbllayer3-c/
 CVE-2017-14408 (A stack-based buffer over-read was discovered in dct36 in layer3.c in  ...)
-	- mp3gain CVE-2018-10776
+	- mp3gain 1.6.2-1
 	[wheezy] - mp3gain <end-of-life>
 	NOTE: https://blogs.gentoo.org/ago/2017/09/08/mp3gain-stack-based-buffer-overflow-in-dct36-mpglibdbllayer3-c/
 CVE-2017-14407 (A stack-based buffer over-read was discovered in filterYule in gain_an ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b02f8b712ee524d32749d396ba271e9defbf4da5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b02f8b712ee524d32749d396ba271e9defbf4da5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201107/1b4e28db/attachment.html>


More information about the debian-security-tracker-commits mailing list