Skip to content
GitLab
Explore
Sign in
Register
Commits on Source
2
CVE-2017-18189,sox: Issue in Wheezy was fixed by DLA-1197-1
· dc7cf2ea
Markus Koschany
authored
Feb 17, 2018
This issue was already fixed with DLA-1197-1. See 0012-xa-validate-channel-count.patch
dc7cf2ea
Remove sox from dla-needed.txt
· a880765c
Markus Koschany
authored
Feb 17, 2018
a880765c
Show whitespace changes
Inline
Side-by-side
data/CVE/list
View file @
a880765c
...
...
@@ -332,6 +332,7 @@ CVE-2018-7050 (An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.
NOTE: https://irssi.org/security/irssi_sa_2018_02.txt
NOTE: Fixed by: https://github.com/irssi/irssi/commit/e91da9e4098e449dc36eaa15354aff67650e7703
CVE-2017-18189 (In the startread function in xa.c in Sound eXchange (SoX) through ...)
{DLA-1197-1}
- sox 14.4.2-2 (bug #881121)
[stretch] - sox <no-dsa> (Minor issue)
[jessie] - sox <no-dsa> (Minor issue)
data/dla-needed.txt
View file @
a880765c
...
...
@@ -78,9 +78,6 @@ openjdk-7 (Emilio Pozuelo)
--
polarssl
--
sox (Markus Koschany)
NOTE: marked no-dsa/minor in stable. if worth an upload, consider also uploading to jessie/stretch as well since version numbers are very close
--
suricata (Santiago R.R.)
NOTE: Hard to tell whether the package is vulnerable. DetectFlow in detect.c
NOTE: does not exist. Code seems to be in SigMatchSignatures instead.
...
...
