Author: jmm
Date: 2017-10-23 22:16:35 +0000 (Mon, 23 Oct 2017)
New Revision: 56933
Modified:
data/CVE/list
Log:
lame no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-23 21:28:00 UTC (rev 56932)
+++ data/CVE/list 2017-10-23 22:16:35 UTC (rev 56933)
@@ -1808,12 +1808,14 @@
NOTE: Pull request: https://github.com/antirez/redis/pull/4365
CVE-2017-15046 (LAME 3.99.5 has a stack-based buffer overflow in
unpack_read_samples ...)
- lame 3.99.5+repack1-8
+ [jessie] - lame <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/lame/bugs/479/
NOTE: Starting with 3.99.5+repack1-8 libsndfile is used to read the
input file, marking that as the fixed
NOTE: version, although the internal lame code was only fixed in 3.100
(strictly speaking that would be
NOTE: severity:unimportant for stretch onwards, but we don't have
suite-specific severity annotations
CVE-2017-15045 (LAME 3.99.5 has a heap-based buffer over-read in fill_buffer
in ...)
- lame 3.99.5+repack1-8
+ [jessie] - lame <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/lame/bugs/478/
NOTE: Starting with 3.99.5+repack1-8 libsndfile is used to read the
input file, marking that as the fixed
NOTE: version, although the internal lame code was only fixed in 3.100
(strictly speaking that would be
@@ -1938,6 +1940,7 @@
NOTE: https://sourceforge.net/p/lame/bugs/477/
CVE-2017-15018 (LAME 3.99.5 has a heap-based buffer over-read when handling a
malformed ...)
- lame 3.99.5+repack1-8
+ [jessie] - lame <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/lame/bugs/480/
NOTE: Starting with 3.99.5+repack1-8 libsndfile is used to read the
input file, marking that as the fixed
NOTE: version, although the internal lame code was only fixed in 3.100
(strictly speaking that would be
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
