sox-devel@lists.sourceforge.net unofficial mirror
 help / color / mirror / code / Atom feed
* CVE-2017-15371
@ 2017-11-19 20:31 Jaromír Mikeš
  2017-11-19 20:49 ` CVE-2017-15371 Måns Rullgård
  0 siblings, 1 reply; 3+ messages in thread
From: Jaromír Mikeš @ 2017-11-19 20:31 UTC (permalink / raw)
  To: sox-devel, Måns Rullgård, Eric Wong


[-- Attachment #1.1: Type: text/plain, Size: 277 bytes --]

Hi,

Is CVE-2017-15371 really fixed?

https://bogomips.org/sox.git/commit/?h=pu&id=818bdd0ccc1e5b6cae742c740c17fd
414935cf39

Debian security team report this issue as persistent and reopened a bug.

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878809

best regards

mira

[-- Attachment #1.2: Type: text/html, Size: 1023 bytes --]

[-- Attachment #2: Type: text/plain, Size: 202 bytes --]

------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot

[-- Attachment #3: Type: text/plain, Size: 158 bytes --]

_______________________________________________
SoX-devel mailing list
SoX-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/sox-devel

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: CVE-2017-15371
  2017-11-19 20:31 CVE-2017-15371 Jaromír Mikeš
@ 2017-11-19 20:49 ` Måns Rullgård
  2017-11-20  9:07   ` CVE-2017-15371 Jaromír Mikeš
  0 siblings, 1 reply; 3+ messages in thread
From: Måns Rullgård @ 2017-11-19 20:49 UTC (permalink / raw)
  To: Jaromír Mikeš; +Cc: Eric Wong, sox-devel

Jaromír Mikeš <mira.mikes@gmail.com> writes:

> Hi,
>
> Is CVE-2017-15371 really fixed?
>
> https://bogomips.org/sox.git/commit/?h=pu&id=818bdd0ccc1e5b6cae742c740c17fd414935cf39

It no longer triggers the assert() for me.

> Debian security team report this issue as persistent and reopened a bug.
>
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878809

They're a bit light on details.

-- 
Måns Rullgård

------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
SoX-devel mailing list
SoX-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/sox-devel

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: CVE-2017-15371
  2017-11-19 20:49 ` CVE-2017-15371 Måns Rullgård
@ 2017-11-20  9:07   ` Jaromír Mikeš
  0 siblings, 0 replies; 3+ messages in thread
From: Jaromír Mikeš @ 2017-11-20  9:07 UTC (permalink / raw)
  To: Måns Rullgård; +Cc: Eric Wong, sox-devel


[-- Attachment #1.1: Type: text/plain, Size: 629 bytes --]

2017-11-19 21:49 GMT+01:00 Måns Rullgård <mans@mansr.com>:

> Jaromír Mikeš <mira.mikes@gmail.com> writes:
>
> > Hi,
> >
> > Is CVE-2017-15371 really fixed?
> >
> > https://bogomips.org/sox.git/commit/?h=pu&id=
> 818bdd0ccc1e5b6cae742c740c17fd414935cf39
>
> It no longer triggers the assert() for me.
>
> > Debian security team report this issue as persistent and reopened a bug.
> >
> > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878809
>
> They're a bit light on details.


​It is closed now ... Thank you

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878809

best regards

mira​

[-- Attachment #1.2: Type: text/html, Size: 1949 bytes --]

[-- Attachment #2: Type: text/plain, Size: 202 bytes --]

------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot

[-- Attachment #3: Type: text/plain, Size: 158 bytes --]

_______________________________________________
SoX-devel mailing list
SoX-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/sox-devel

^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2017-11-20  9:07 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2017-11-19 20:31 CVE-2017-15371 Jaromír Mikeš
2017-11-19 20:49 ` CVE-2017-15371 Måns Rullgård
2017-11-20  9:07   ` CVE-2017-15371 Jaromír Mikeš

Code repositories for project(s) associated with this public inbox

	https://80x24.org/mirrors/sox.git

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).