thr3ads.net - Secure testing commits - [Secure-testing-commits] r8536

If this information is useful, please help other people find it:
Share via:

nion at alioth.debian.org

2008-Apr-16 08:13 UTC

[Secure-testing-commits] r8536 - data/CVE

Author: nion
Date: 2008-04-16 08:13:31 +0000 (Wed, 16 Apr 2008)
New Revision: 8536

Modified:
   data/CVE/list
Log:
xine-lib added to CVE-2008-1686

Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-04-15 22:38:07 UTC (rev 8535)
+++ data/CVE/list	2008-04-16 08:13:31 UTC (rev 8536)
@@ -1,6 +1,3 @@
-CVE-2008-XXXX [insufficient boundary check in speex audio decoder of xine-lib]
-	- xine-lib 1.1.12-1 (medium)
-	NOTE: might be added to CVE-2008-1686
 CVE-2008-XXXX [secilia insecure tmp file usage]
 	- cecilia <unfixed> (low; bug #476321)
 CVE-2008-1781
@@ -209,6 +206,7 @@
 CVE-2008-1686 (Uncontrolled array index in Speex 1.1.12 and earlier, as used in
...)
 	- speex 1.2~beta2-1 (medium)
 	- libfishsound 0.7.0-2.2 (medium; bug #475152)
+	- xine-lib 1.1.12-1 (medium)
 CVE-2008-1685 (gcc 4.2.0 through 4.3.0 in GNU Compiler Collection, when casts
are not ...)
 	TODO: check
 	NOTE: dup of CVE-2006-1902 which is fixed in Debian?

Secure testing commits - Apr 2008 - r8536 - data/CVE

[Secure-testing-commits] r8536 - data/CVE