[Git][security-tracker-team/security-tracker][master] libebml commits

Thu, 25 Jul 2019 09:03:31 -0700 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
10d5986a by Moritz Muehlenhoff at 2019-07-25T16:01:22Z
libebml commits

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1338,11 +1338,15 @@ CVE-2019-13616 (SDL (Simple DirectMedia Layer) through 
1.2.15 and 2.x through 2.
        - libsdl1.2 <unfixed>
        NOTE: https://bugzilla.libsdl.org/show_bug.cgi?id=4538
 CVE-2019-13615 (VideoLAN VLC media player 3.0.7.1 has a heap-based buffer 
over-read in ...)
-       - libebml 1.3.6-1 (bug #932241)
+       - libebml 1.3.6-1 (low; bug #932241)
+       [stretch] - libebml <no-dsa> (Minor issue)
        NOTE: https://trac.videolan.org/vlc/ticket/22474
        NOTE: Issue was originally reported to vlc project, but the underlying 
issue is
-       NOTE: found in the libebml library, fixed upstream in 1.3.6. No 
information on
-       NOTE: details.
+       NOTE: found in the libebml library
+       NOTE: 
https://github.com/Matroska-Org/libebml/commit/05beb69ba60acce09f73ed491bb76f332849c3a0
+       NOTE: 
https://github.com/Matroska-Org/libebml/commit/ff0dc3cc21494578ce731f5d7dcde5fdec23d40f
+       NOTE: 
https://github.com/Matroska-Org/libebml/commit/b66ca475be967547af9a3784e720fbbacd381be6
+       NOTE: 
https://github.com/Matroska-Org/libebml/commit/534dfdb995edc18e528de8ce9fa20b3df88426ae
 CVE-2019-13614 (CMD_SET_CONFIG_COUNTRY in the TP-Link Device Debug protocol in 
TP-Link ...)
        NOT-FOR-US: TP-Link
 CVE-2019-13613 (CMD_FTEST_CONFIG in the TP-Link Device Debug protocol in 
TP-Link Wirel ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/10d5986a9aa810cf08e2d57177493c2b5affb68f

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/10d5986a9aa810cf08e2d57177493c2b5affb68f
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to