[Git][security-tracker-team/security-tracker][master] new wavpack issues

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
80da7d7a by Moritz Muehlenhoff at 2018-04-29T22:20:04+02:00
new wavpack issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -7,15 +7,29 @@ CVE-2018-10542
 CVE-2018-10541
        RESERVED
 CVE-2018-10540 (An issue was discovered in WavPack 5.1.0 and earlier for W64 
input. ...)
-       TODO: check
+       - wavpack <unfixed>
+       NOTE: 
https://github.com/dbry/WavPack/commit/6f8bb34c2993a48ab9afbe353e6d0cff7c8d821d
+       NOTE: https://github.com/dbry/WavPack/issues/33
 CVE-2018-10539 (An issue was discovered in WavPack 5.1.0 and earlier for 
DSDiff input. ...)
-       TODO: check
+       - wavpack <unfixed>
+       NOTE: 
https://github.com/dbry/WavPack/commit/6f8bb34c2993a48ab9afbe353e6d0cff7c8d821d
+       NOTE: https://github.com/dbry/WavPack/issues/33
 CVE-2018-10538 (An issue was discovered in WavPack 5.1.0 and earlier for WAV 
input. ...)
-       TODO: check
+       - wavpack <unfixed>
+       NOTE: 
https://github.com/dbry/WavPack/commit/6f8bb34c2993a48ab9afbe353e6d0cff7c8d821d
+       NOTE: https://github.com/dbry/WavPack/issues/33
 CVE-2018-10537 (An issue was discovered in WavPack 5.1.0 and earlier. The W64 
parser ...)
-       TODO: check
+       - wavpack <unfixed>
+       NOTE: 
https://github.com/dbry/WavPack/commit/26cb47f99d481ad9b93eeff80d26e6b63bbd7e15
+       NOTE: https://github.com/dbry/WavPack/issues/30
+       NOTE: https://github.com/dbry/WavPack/issues/31
+       NOTE: https://github.com/dbry/WavPack/issues/32
 CVE-2018-10536 (An issue was discovered in WavPack 5.1.0 and earlier. The WAV 
parser ...)
-       TODO: check
+       - wavpack <unfixed>
+       NOTE: 
https://github.com/dbry/WavPack/commit/26cb47f99d481ad9b93eeff80d26e6b63bbd7e15
+       NOTE: https://github.com/dbry/WavPack/issues/30
+       NOTE: https://github.com/dbry/WavPack/issues/31
+       NOTE: https://github.com/dbry/WavPack/issues/32
 CVE-2018-10535 (The ignore_section_sym function in elf.c in the Binary File 
Descriptor ...)
        TODO: check
 CVE-2018-10534 (The _bfd_XX_bfd_copy_private_bfd_data_common function in 
peXXigen.c in ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/80da7d7a5d9f19224ca5a86b94452432eef08d7a

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/80da7d7a5d9f19224ca5a86b94452432eef08d7a
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits