[Git][security-tracker-team/security-tracker][master] Reserve DLA-3126-1 for libsndfile

Thorsten Alteholz (@alteholz) alteholz at debian.org
Thu Sep 29 23:16:47 BST 2022



Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ff05dca9 by Thorsten Alteholz at 2022-09-30T00:16:27+02:00
Reserve DLA-3126-1 for libsndfile

- - - - -


2 changed files:

- data/CVE/list
- data/DLA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -57833,7 +57833,6 @@ CVE-2021-4156 (An out-of-bounds read flaw was found in libsndfile's FLAC codec f
 	{DLA-3058-1}
 	- libsndfile 1.1.0-1 (bug #1014713)
 	[bullseye] - libsndfile <no-dsa> (Minor issue)
-	[buster] - libsndfile <no-dsa> (Minor issue)
 	NOTE: https://github.com/libsndfile/libsndfile/issues/731
 	NOTE: https://github.com/libsndfile/libsndfile/commit/ced91d7b971be6173b604154c39279ce90ad87cc (1.1.0beta1)
 CVE-2021-4155 (A data leak flaw was found in the way XFS_IOC_ALLOCSP IOCTL in the XFS ...)


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[30 Sep 2022] DLA-3126-1 libsndfile - security update
+	{CVE-2021-4156}
+	[buster] - libsndfile 1.0.28-6+deb10u2
 [30 Sep 2022] DLA-3125-1 libvncserver - security update
 	{CVE-2020-25708 CVE-2020-29260}
 	[buster] - libvncserver 0.9.11+dfsg-1.3+deb10u5



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff05dca958ef95500c19b72589e8fa9c911a90b1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff05dca958ef95500c19b72589e8fa9c911a90b1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220929/25d4f33a/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list