Opened 3 years ago

Closed 3 years ago

#12207 closed enhancement (fixed)

Create security patch for vorbis-tools to fix CVE-2014-9638 and CVE-2014-9639

Reported by: Douglas R. Reno Owned by: Douglas R. Reno
Priority: high Milestone: 9.0
Component: BOOK Version: SVN
Severity: normal Keywords:
Cc:

Description

While browsing the internet earlier, I ran across a couple of fixes for vorbis-tools to fix a division by zero and integer overflow. We should probably add these.

https://git.savannah.gnu.org/cgit/guix.git/tree/gnu/packages/patches/vorbis-tools-CVE-2014-9638+CVE-2014-9639.patch

Change History (4)

comment:1 by Douglas R. Reno, 3 years ago

Priority: normalhigh

comment:2 by Bruce Dubbs, 3 years ago

Milestone: 8.59.0

Milestone renamed

comment:3 by Douglas R. Reno, 3 years ago

Owner: changed from blfs-book to Douglas R. Reno
Status: newassigned

comment:4 by Douglas R. Reno, 3 years ago

Resolution: fixed
Status: assignedclosed

Fixed at r21808

Note: See TracTickets for help on using tickets.