Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c07fb977 by Salvatore Bonaccorso at 2019-07-14T15:20:11Z
Add fixied information for CVE-2019-1010318/wavpack
It's not clear if this is actually a duplicate or just another stance of
an issue for wavpack relating to same upstream issue and same upstream
fix.
Clarification with MITRE pending, for the time beeing just mark it as
fixed with the repsective version which included the fix.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9527,7 +9527,8 @@ CVE-2019-1010319 (WavPack 5.1.0 and earlier is affected
by: CWE-457: Use of Unin
NOTE:
https://github.com/dbry/WavPack/commit/33a0025d1d63ccd05d9dbaa6923d52b1446a62fe
NOTE: https://github.com/dbry/WavPack/issues/68
CVE-2019-1010318 (WavPack 5.1.0 and earlier is affected by: CWE-457: Use of
Uninitialize ...)
- - wavpack <unfixed> (low)
+ - wavpack 5.1.0-6 (low)
+ [stretch] - wavpack <no-dsa> (Minor issue)
NOTE:
https://github.com/dbry/WavPack/commit/bc6cba3f552c44565f7f1e66dc1580189addb2b4
NOTE: https://github.com/dbry/WavPack/issues/67
CVE-2019-1010317 (WavPack 5.1.0 and earlier is affected by: CWE-457: Use of
Uninitialize ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/c07fb9770dbb2dac72c1e875cc89234374382cb9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/c07fb9770dbb2dac72c1e875cc89234374382cb9
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
