Author: carnil Date: 2017-11-19 20:13:56 +0000 (Sun, 19 Nov 2017) New Revision: 57839
Modified: data/CVE/list Log: Add todo for CVE-2017-15371 Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-11-19 20:04:24 UTC (rev 57838) +++ data/CVE/list 2017-11-19 20:13:56 UTC (rev 57839) @@ -4373,6 +4373,7 @@ [stretch] - sox <no-dsa> (Minor issue) [jessie] - sox <no-dsa> (Minor issue) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1500570 + TODO: check with maintainer, 14.4.2-1 with 0005-CVE-2017-15371.patch was meant to address the issue, but assertion still reached, cf #878809 CVE-2017-15370 (There is a heap-based buffer overflow in the ImaExpandS function of ...) [experimental] - sox 14.4.2-1 - sox <unfixed> (bug #878810) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits