[Git][security-tracker-team/security-tracker][master] Update information on CVE-2023-49356/mp3gain
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Dec 23 15:21:18 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1983db92 by Salvatore Bonaccorso at 2023-12-23T16:20:48+01:00
Update information on CVE-2023-49356/mp3gain
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -129,9 +129,9 @@ CVE-2023-49790 (The Nextcloud iOS Files app allows users of iOS to interact with
CVE-2023-49391 (An issue was discovered in free5GC version 3.3.0, allows remote attack ...)
NOT-FOR-US: free5GC
CVE-2023-49356 (A stack buffer overflow vulnerability in MP3Gain v1.6.2 allows an atta ...)
- - mp3gain <undetermined>
+ - mp3gain 1.6.2-2
NOTE: https://github.com/linzc21/bug-reports/blob/main/reports/mp3gain/1.6.2/stack-buffer-overflow/CVE-2023-49356.md
- TODO: check
+ NOTE: Likely the same and duplicate of CVE-2018-10777 and covered by the same fixes applied
CVE-2023-49088 (Cacti is an open source operational monitoring and fault management fr ...)
- cacti <unfixed>
NOTE: https://github.com/Cacti/cacti/security/advisories/GHSA-q7g7-gcf6-wh4x
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1983db926d8b1bfd38474d49382ae49b8544b45b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1983db926d8b1bfd38474d49382ae49b8544b45b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231223/7675bea5/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list