Author: carnil
Date: 2017-11-20 15:08:38 +0000 (Mon, 20 Nov 2017)
New Revision: 57853
Modified:
data/CVE/list
Log:
Add proposed patch / pull request from agx, #876778
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-20 14:55:43 UTC (rev 57852)
+++ data/CVE/list 2017-11-20 15:08:38 UTC (rev 57853)
@@ -6597,6 +6597,7 @@
CVE-2017-14633 (In Xiph.Org libvorbis 1.3.5, an out-of-bounds array read
vulnerability ...)
- libvorbis <unfixed> (bug #876778)
NOTE: https://gitlab.xiph.org/xiph/vorbis/issues/2329
+ NOTE: https://github.com/xiph/vorbis/pull/34
CVE-2017-14632 (Xiph.Org libvorbis 1.3.5 allows Remote Code Execution upon
freeing ...)
- libvorbis <unfixed> (bug #876779)
[jessie] - libvorbis <not-affected> (Vulnerable code not present)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
