[Git][security-tracker-team/security-tracker][master] wavpack fixed in sid

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2bbd0d29 by Moritz Muehlenhoff at 2022-07-13T10:53:05+02:00
wavpack fixed in sid
node-moment no-dsa

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11922,6 +11922,8 @@ CVE-2022-31130
 	RESERVED
 CVE-2022-31129 (moment is a JavaScript date library for parsing, validating, manipulat ...)
 	- node-moment <unfixed> (bug #1014845)
+	[bullseye] - node-moment <no-dsa> (Minor issue)
+	[buster] - node-moment <no-dsa> (Minor issue)
 	NOTE: https://github.com/moment/moment/commit/9a3b5894f3d5d602948ac8a02e4ee528a49ca3a3 (2.29.4)
 	NOTE: https://github.com/moment/moment/pull/6015#issuecomment-1152961973
 	NOTE: https://github.com/moment/moment/security/advisories/GHSA-wc69-rhjr-hc9g
@@ -45998,7 +46000,7 @@ CVE-2021-44271
 CVE-2021-44270
 	RESERVED
 CVE-2021-44269 (An out of bounds read was found in Wavpack 5.4.0 in processing *.WAV f ...)
-	- wavpack <unfixed> (unimportant)
+	- wavpack 5.5.0-1 (unimportant)
 	NOTE: https://github.com/dbry/WavPack/issues/110
 	NOTE: Fixed by: https://github.com/dbry/WavPack/commit/773f9d0803c6888ae7d5391878d7337f24216f4a
 	NOTE: Negligible security impact; only impacts the CLI program



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2bbd0d2988470553bbe74f2e26fc15a07265a6c1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2bbd0d2988470553bbe74f2e26fc15a07265a6c1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220713/a5f931df/attachment.htm>