Thorsten Alteholz pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6e08b252 by Thorsten Alteholz at 2019-05-06T12:23:57Z
mark CVE-2019-11498 as not-affected in Jessie
- - - - -
b8f065f6 by Thorsten Alteholz at 2019-05-06T12:23:57Z
not upload needed for wavpack
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -644,6 +644,7 @@ CVE-2019-11499 [Submission-login crashes when
authentication is started over TLS
CVE-2019-11498 (WavpackSetConfiguration64 in pack_utils.c in libwavpack.a in
WavPack t ...)
- wavpack 5.1.0-6 (low; bug #927903)
[stretch] - wavpack <no-dsa> (Minor issue)
+ [jessie] - wavpack <not-affected> (Vulnerable code not present,
introduced in 5.0.0)
NOTE: https://github.com/dbry/WavPack/issues/67
NOTE:
https://github.com/dbry/WavPack/commit/bc6cba3f552c44565f7f1e66dc1580189addb2b4
CVE-2019-11497
=====================================
data/dla-needed.txt
=====================================
@@ -124,8 +124,6 @@ sox
--
symfony (Jonas Meurer)
--
-wavpack (Thorsten Alteholz)
---
wireshark
--
wordpress
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/3f15f9a4a3eaecf6decc04db78af0167c1f9fa94...b8f065f6796d6fb42e2f7a11608c7d917d47991b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/3f15f9a4a3eaecf6decc04db78af0167c1f9fa94...b8f065f6796d6fb42e2f7a11608c7d917d47991b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
