Two libvorbis issues fixed in unstable

git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@58966 e39458fd-73e7-0310-bf30-c45bca0a0e42
author: Salvatore Bonaccorso <carnil@debian.org> 2017-12-27 18:16:43 +0000
committer: Salvatore Bonaccorso <carnil@debian.org> 2017-12-27 18:16:43 +0000
commit: b635f9a9811b515ca23c32d904b400e810ff6ad0 (patch)
tree: c9ef5614818848349accd81206cbc09317e4e785 /data
parent: 5bc5e5f4feb82904341ceed34912f9e1daf4cd99 (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/data/CVE/list b/data/CVE/list
index c5455b926e..f010ee71d9 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -16864,11 +16864,11 @@ CVE-2017-14634 (In libsndfile 1.0.28, a divide-by-zero error exists in the funct
 	NOTE: https://github.com/erikd/libsndfile/issues/318
 	NOTE: Fixed by: https://github.com/erikd/libsndfile/commit/85c877d5072866aadbe8ed0c3e0590fbb5e16788
 CVE-2017-14633 (In Xiph.Org libvorbis 1.3.5, an out-of-bounds array read vulnerability ...)
-	- libvorbis <unfixed> (bug #876778)
+	- libvorbis 1.3.5-4.1 (bug #876778)
 	NOTE: https://gitlab.xiph.org/xiph/vorbis/issues/2329
 	NOTE: https://github.com/xiph/vorbis/pull/34
 CVE-2017-14632 (Xiph.Org libvorbis 1.3.5 allows Remote Code Execution upon freeing ...)
-	- libvorbis <unfixed> (bug #876779)
+	- libvorbis 1.3.5-4.1 (bug #876779)
 	[jessie] - libvorbis <not-affected> (Vulnerable code not present)
 	[wheezy] - libvorbis <not-affected> (Vulnerable code not present)
 	NOTE: https://gitlab.xiph.org/xiph/vorbis/issues/2328
author	Salvatore Bonaccorso <carnil@debian.org>	2017-12-27 18:16:43 +0000
committer	Salvatore Bonaccorso <carnil@debian.org>	2017-12-27 18:16:43 +0000
commit	b635f9a9811b515ca23c32d904b400e810ff6ad0 (patch)
tree	c9ef5614818848349accd81206cbc09317e4e785 /data
parent	5bc5e5f4feb82904341ceed34912f9e1daf4cd99 (diff)