[Git][security-tracker-team/security-tracker][master] Strip no-dsa tags for wavpack for jessie

Utkarsh Gupta utkarsh at debian.org
Thu Jan 14 13:51:19 GMT 2021



Utkarsh Gupta pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e543ab70 by Utkarsh Gupta at 2021-01-14T19:21:02+05:30
Strip no-dsa tags for wavpack for jessie

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -117478,7 +117478,6 @@ CVE-2019-1010319 (WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Unin
 	- wavpack 5.1.0-7 (low; bug #932061)
 	[buster] - wavpack <no-dsa> (Minor issue)
 	[stretch] - wavpack <no-dsa> (Minor issue)
-	[jessie] - wavpack <no-dsa> (Minor issue)
 	NOTE: https://github.com/dbry/WavPack/commit/33a0025d1d63ccd05d9dbaa6923d52b1446a62fe
 	NOTE: https://github.com/dbry/WavPack/issues/68
 CVE-2019-1010318
@@ -117487,7 +117486,6 @@ CVE-2019-1010317 (WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Unin
 	- wavpack 5.1.0-7 (low; bug #932060)
 	[buster] - wavpack <no-dsa> (Minor issue)
 	[stretch] - wavpack <no-dsa> (Minor issue)
-	[jessie] - wavpack <no-dsa> (Minor issue)
 	NOTE: https://github.com/dbry/WavPack/commit/f68a9555b548306c5b1ee45199ccdc4a16a6101b
 	NOTE: https://github.com/dbry/WavPack/issues/66
 CVE-2019-1010316 (pyxtrlock 0.3 and earlier is affected by: Incorrect Access Control. Th ...)
@@ -117495,7 +117493,6 @@ CVE-2019-1010316 (pyxtrlock 0.3 and earlier is affected by: Incorrect Access Con
 CVE-2019-1010315 (WavPack 5.1 and earlier is affected by: CWE 369: Divide by Zero. The i ...)
 	- wavpack 5.1.0-6 (low)
 	[stretch] - wavpack <no-dsa> (Minor issue)
-	[jessie] - wavpack <no-dsa> (Minor issue)
 	NOTE: https://github.com/dbry/WavPack/commit/4c0faba32fddbd0745cbfaf1e1aeb3da5d35b9fc
 	NOTE: https://github.com/dbry/WavPack/issues/65
 CVE-2019-1010314 (Gitea 1.7.2, 1.7.3 is affected by: Cross Site Scripting (XSS). The imp ...)
@@ -141666,13 +141663,11 @@ CVE-2018-19842 (getToken in libr/asm/p/asm_x86_nz.c in radare2 before 3.1.0 allo
 CVE-2018-19841 (The function WavpackVerifySingleBlock in open_utils.c in libwavpack.a  ...)
 	- wavpack 5.1.0-5 (bug #915565)
 	[stretch] - wavpack <no-dsa> (Minor issue)
-	[jessie] - wavpack <no-dsa> (Minor issue)
 	NOTE: https://github.com/dbry/WavPack/commit/bba5389dc598a92bdf2b297c3ea34620b6679b5b
 	NOTE: https://github.com/dbry/WavPack/issues/54
 CVE-2018-19840 (The function WavpackPackInit in pack_utils.c in libwavpack.a in WavPac ...)
 	- wavpack 5.1.0-5 (bug #915564)
 	[stretch] - wavpack <no-dsa> (Minor issue)
-	[jessie] - wavpack <no-dsa> (Minor issue)
 	NOTE: https://github.com/dbry/WavPack/commit/070ef6f138956d9ea9612e69586152339dbefe51
 	NOTE: https://github.com/dbry/WavPack/issues/53
 CVE-2018-19839 (In LibSass prior to 3.5.5, the function handle_error in sass_context.c ...)
@@ -236023,7 +236018,6 @@ CVE-2016-10170 (The WriteCaffHeader function in cli/caff.c in Wavpack before 5.1
 	NOTE: Fixed by: https://github.com/dbry/WavPack/commit/4bc05fc490b66ef2d45b1de26abf1455b486b0dc (5.1.0)
 CVE-2016-10169 (The read_code function in read_words.c in Wavpack before 5.1.0 allows  ...)
 	- wavpack 5.0.0-2 (bug #853076)
-	[jessie] - wavpack <no-dsa> (Minor issue)
 	[wheezy] - wavpack <no-dsa> (Minor issue)
 	NOTE: https://sourceforge.net/p/wavpack/mailman/message/35557889/
 	NOTE: Fixed by: https://github.com/dbry/WavPack/commit/4bc05fc490b66ef2d45b1de26abf1455b486b0dc (5.1.0)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e543ab70d30be28dd597aa4590f205138a01bdf9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e543ab70d30be28dd597aa4590f205138a01bdf9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210114/96b46eb8/attachment.html>


More information about the debian-security-tracker-commits mailing list