[Git][security-tracker-team/security-tracker][master] Add a note about the POC upstream of CVE-2023-32627
Bastien Roucariès (@rouca)
rouca at debian.org
Sun Aug 13 15:47:44 BST 2023
Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4a7f1062 by Bastien Roucariès at 2023-08-13T14:46:29+00:00
Add a note about the POC upstream of CVE-2023-32627
Note that a previous fix render upstream POC unusble for testing but FPE is still present
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4925,6 +4925,7 @@ CVE-2023-32627 (A floating point exception vulnerability was found in sox, in th
- sox <unfixed> (bug #1041112)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2212282
NOTE: https://sourceforge.net/p/sox/bugs/369/
+ NOTE: POC posted upstream is masked by fix of CVE-2021-3643, however sampling rate == 0, thus FPE is not fixed by CVE-2021-3643
CVE-2023-30765 (Delta Electronics InfraSuite Device Master versions prior to 1.0.7 con ...)
NOT-FOR-US: Delta Electronics InfraSuite Device Master
CVE-2023-2967 (The TinyMCE Custom Styles WordPress plugin before 1.1.4 does not sanit ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4a7f106212a539c31fa8d41974d32252c9732cef
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4a7f106212a539c31fa8d41974d32252c9732cef
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230813/d9d96d44/attachment.htm>
More information about the debian-security-tracker-commits
mailing list