Author: carnil Date: 2017-10-03 19:30:42 +0000 (Tue, 03 Oct 2017) New Revision: 56383
Modified: data/CVE/list Log: Add two separate bugs for libgig issues Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-10-03 19:26:23 UTC (rev 56382) +++ data/CVE/list 2017-10-03 19:30:42 UTC (rev 56383) @@ -5292,7 +5292,7 @@ NOTE: Not reproducible in wheezy/jessie/stretch/sid(0.25-3.1) => "The memory contains data of an unknown image type" NOTE: Reproducible in experimental (0.26-1). CVE-2017-12954 (The gig::Region::GetSampleFromWavePool function in gig.cpp in libgig ...) - - libgig <unfixed> (low; bug #873718) + - libgig <unfixed> (low; bug #877652) [stretch] - libgig <no-dsa> (Minor issue) [jessie] - libgig <no-dsa> (Minor issue) [wheezy] - libgig <no-dsa> (Minor issue) @@ -5313,7 +5313,7 @@ NOTE: http://seclists.org/fulldisclosure/2017/Aug/39 (provides repoducer files) NOTE: http://svn.linuxsampler.org/cgi-bin/viewvc.cgi?view=revision&revision=3348 CVE-2017-12951 (The gig::DimensionRegion::CreateVelocityTable function in gig.cpp in ...) - - libgig <unfixed> (low; bug #873718) + - libgig <unfixed> (low; bug #877651) [stretch] - libgig <no-dsa> (Minor issue) [jessie] - libgig <no-dsa> (Minor issue) [wheezy] - libgig <no-dsa> (Minor issue) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits