Author: carnil
Date: 2017-10-03 19:30:42 +0000 (Tue, 03 Oct 2017)
New Revision: 56383
Modified:
data/CVE/list
Log:
Add two separate bugs for libgig issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-03 19:26:23 UTC (rev 56382)
+++ data/CVE/list 2017-10-03 19:30:42 UTC (rev 56383)
@@ -5292,7 +5292,7 @@
NOTE: Not reproducible in wheezy/jessie/stretch/sid(0.25-3.1) => "The
memory contains data of an unknown image type"
NOTE: Reproducible in experimental (0.26-1).
CVE-2017-12954 (The gig::Region::GetSampleFromWavePool function in gig.cpp in
libgig ...)
- - libgig <unfixed> (low; bug #873718)
+ - libgig <unfixed> (low; bug #877652)
[stretch] - libgig <no-dsa> (Minor issue)
[jessie] - libgig <no-dsa> (Minor issue)
[wheezy] - libgig <no-dsa> (Minor issue)
@@ -5313,7 +5313,7 @@
NOTE: http://seclists.org/fulldisclosure/2017/Aug/39 (provides
repoducer files)
NOTE:
http://svn.linuxsampler.org/cgi-bin/viewvc.cgi?view=revision&revision=3348
CVE-2017-12951 (The gig::DimensionRegion::CreateVelocityTable function in
gig.cpp in ...)
- - libgig <unfixed> (low; bug #873718)
+ - libgig <unfixed> (low; bug #877651)
[stretch] - libgig <no-dsa> (Minor issue)
[jessie] - libgig <no-dsa> (Minor issue)
[wheezy] - libgig <no-dsa> (Minor issue)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
