[Git][security-tracker-team/security-tracker][master] 2 commits: Two audiofile issues fixed via unstable upload

Fri, 05 Apr 2019 08:59:32 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
1523a3f0 by Salvatore Bonaccorso at 2019-04-05T15:57:47Z
Two audiofile issues fixed via unstable upload

- - - - -
28d0144a by Salvatore Bonaccorso at 2019-04-05T15:58:29Z
Remove one no-dsa tagged entry for buster as fix landed in unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -34805,7 +34805,7 @@ CVE-2018-17183 (Artifex Ghostscript before 9.25 allowed 
a user-writable error ex
        NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=699708
        NOTE: 
http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=fb713b3818b52d8a6cf62c951eba2e1795ff9624
 CVE-2018-17095 (An issue has been discovered in mpruett Audio File Library 
(aka audiof ...)
-       - audiofile <unfixed> (low; bug #913166)
+       - audiofile 0.3.6-5 (low; bug #913166)
        [stretch] - audiofile <no-dsa> (Minor issue)
        [jessie] - audiofile <postponed> (Can be fixed along in future DLA)
        NOTE: https://github.com/mpruett/audiofile/issues/50
@@ -44238,8 +44238,7 @@ CVE-2018-13441 (qh_help in Nagios Core version 4.4.1 
and earlier is prone to a N
        NOTE: 
https://gist.github.com/fakhrizulkifli/8df4a174158df69ebd765f824bd736b8
        NOTE: 
https://github.com/NagiosEnterprises/nagioscore/commit/b1a92a3b52d292ccb601e77a0b29cb1e67ac9d76
 CVE-2018-13440 (The audiofile Audio File Library 0.3.6 has a NULL pointer 
dereference  ...)
-       - audiofile <unfixed> (low; bug #903499)
-       [buster] - audiofile <no-dsa> (Minor issue)
+       - audiofile 0.3.6-5 (low; bug #903499)
        [stretch] - audiofile <no-dsa> (Minor issue)
        [jessie] - audiofile <no-dsa> (Minor issue)
        NOTE: https://github.com/mpruett/audiofile/issues/49



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/compare/4b8254922966b37c1713d273cb2faaee92194f4a...28d0144a5d7bb8627d87e250fd6692d09e9b7d0d

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/compare/4b8254922966b37c1713d273cb2faaee92194f4a...28d0144a5d7bb8627d87e250fd6692d09e9b7d0d
You're receiving this email because of your account on salsa.debian.org.


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to