[Git][security-tracker-team/security-tracker][master] 2 commits: Add temporary description for two sox issues

Fri, 29 Apr 2022 13:45:20 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
2945a497 by Salvatore Bonaccorso at 2022-04-29T22:40:59+02:00
Add temporary description for two sox issues

- - - - -
17f4ab44 by Salvatore Bonaccorso at 2022-04-29T22:44:26+02:00
Add Debian bug reference for two sox issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -52409,9 +52409,9 @@ CVE-2021-36717 (Synerion TimeNet version 9.21 contains 
a directory traversal vul
        NOT-FOR-US: Synerion TimeNet
 CVE-2021-36716 (A ReDoS (regular expression denial of service) flaw was found 
in the S ...)
        NOT-FOR-US: Node is-email
-CVE-2021-3643
+CVE-2021-3643 [buffer overflow read vulnerability]
        RESERVED
-       - sox <unfixed>
+       - sox <unfixed> (bug #1010374)
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1980626
        NOTE: Triggered by same reproducer as for CVE-2021-23210
        NOTE: https://sourceforge.net/p/sox/bugs/351/
@@ -59118,9 +59118,9 @@ CVE-2021-33842 (Improper Authentication vulnerability 
in the cookie parameter of
        NOT-FOR-US: Circutor SGE-PLC1000 firmware
 CVE-2021-33841 (SGE-PLC1000 device, in its 0.9.2b firmware version, does not 
handle so ...)
        NOT-FOR-US: SGE-PLC1000 device
-CVE-2021-23210
+CVE-2021-23210 [divide by zero in voc.c]
        RESERVED
-       - sox <unfixed>
+       - sox <unfixed> (bug #1010374)
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1975670
        NOTE: https://sourceforge.net/p/sox/bugs/351/
 CVE-2021-23172



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/73c38598e0ea4d9e8f645a24a808ec712ab04474...17f4ab4468fc1493ef34bad5d3ab6086d92a0a50

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/73c38598e0ea4d9e8f645a24a808ec712ab04474...17f4ab4468fc1493ef34bad5d3ab6086d92a0a50
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to