[Git][security-tracker-team/security-tracker][master] CVE-2017-12678: Link to the commit in upstream master
Adrian Bunk (@bunk)
bunk at debian.org
Thu Sep 30 21:12:34 BST 2021
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker
Commits:
40520f09 by Adrian Bunk at 2021-09-30T23:12:20+03:00
CVE-2017-12678: Link to the commit in upstream master
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -260264,7 +260264,7 @@ CVE-2017-12678 (In TagLib 1.11.1, the rebuildAggregateFrames function in id3v2fr
[wheezy] - taglib <not-affected> (Vulnerable code not present)
- silverjuke <not-affected> (Vulnerable code not present, based on older taglib version)
NOTE: https://github.com/taglib/taglib/issues/829
- NOTE: https://github.com/taglib/taglib/pull/831/commits/eb9ded1206f18f2c319157337edea2533a40bea6#diff-37f706c8696a7c1ca939b169c0a04d97
+ NOTE: https://github.com/taglib/taglib/commit/cb9f07d9dcd791b63e622da43f7b232adaec0a9a
CVE-2017-12677 (IdentityServer3 2.4.x, 2.5.x, and 2.6.x before 2.6.1 has XSS in an Ang ...)
NOT-FOR-US: IdentityServer
CVE-2017-12676 (In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the f ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/40520f09cb007a151f5a0f3db8e455e78306b020
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/40520f09cb007a151f5a0f3db8e455e78306b020
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210930/32583370/attachment.htm>
More information about the debian-security-tracker-commits
mailing list