[Git][security-tracker-team/security-tracker][master] sox: bump fixed version for previously incomplete fixes

Helmut Grohne (@helmutg) helmutg at debian.org
Sun Feb 5 12:35:38 GMT 2023 


Helmut Grohne pushed to branch master at Debian Security Tracker / security-tracker


Commits:
01fe1096 by Helmut Grohne at 2023-02-05T13:35:06+01:00
sox: bump fixed version for previously incomplete fixes

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -117467,7 +117467,7 @@ CVE-2021-36717 (Synerion TimeNet version 9.21 contains a directory traversal vul
 CVE-2021-36716 (A ReDoS (regular expression denial of service) flaw was found in the S ...)
 	NOT-FOR-US: Node is-email
 CVE-2021-3643 (A flaw was found in sox 14.4.1. The lsx_adpcm_init function within lib ...)
-	- sox 14.4.2+git20190427-3.1 (bug #1010374)
+	- sox 14.4.2+git20190427-3.2 (bug #1010374)
 	[bullseye] - sox <no-dsa> (Minor issue)
 	[buster] - sox <no-dsa> (Minor issue)
 	[stretch] - sox <no-dsa> (Minor issue)
@@ -124279,7 +124279,7 @@ CVE-2021-33842 (Improper Authentication vulnerability in the cookie parameter of
 CVE-2021-33841 (SGE-PLC1000 device, in its 0.9.2b firmware version, does not handle so ...)
 	NOT-FOR-US: SGE-PLC1000 device
 CVE-2021-23210 (A floating point exception (divide-by-zero) issue was discovered in So ...)
-	- sox 14.4.2+git20190427-3.1 (bug #1010374)
+	- sox 14.4.2+git20190427-3.2 (bug #1010374)
 	[bullseye] - sox <no-dsa> (Minor issue)
 	[buster] - sox <no-dsa> (Minor issue)
 	[stretch] - sox <no-dsa> (Minor issue)
@@ -124287,12 +124287,12 @@ CVE-2021-23210 (A floating point exception (divide-by-zero) issue was discovered
 	NOTE: https://sourceforge.net/p/sox/bugs/351/
 	NOTE: https://www.openwall.com/lists/oss-security/2023/02/03/3
 CVE-2021-23172 (A vulnerability was found in SoX, where a heap-buffer-overflow occurs  ...)
-	- sox 14.4.2+git20190427-3.1 (bug #1021134)
+	- sox 14.4.2+git20190427-3.2 (bug #1021134)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1975666
 	NOTE: https://sourceforge.net/p/sox/bugs/350/
 	NOTE: https://www.openwall.com/lists/oss-security/2023/02/03/3
 CVE-2021-23159 (A vulnerability was found in SoX, where a heap-buffer-overflow occurs  ...)
-	- sox 14.4.2+git20190427-3.1 (bug #1021133)
+	- sox 14.4.2+git20190427-3.2 (bug #1021133)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1975671
 	NOTE: https://sourceforge.net/p/sox/bugs/352/
 	NOTE: https://www.openwall.com/lists/oss-security/2023/02/03/3



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/01fe1096b727b2f6634bd4a7199f73de414ca7d8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/01fe1096b727b2f6634bd4a7199f73de414ca7d8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230205/89b5dab1/attachment.htm>

More information about the debian-security-tracker-commits mailing list