[Secure-testing-commits] r6949 - data/CVE

white at alioth.debian.org white at alioth.debian.org
Sun Oct 14 12:17:35 UTC 2007


Author: white
Date: 2007-10-14 12:17:34 +0000 (Sun, 14 Oct 2007)
New Revision: 6949

Modified:
   data/CVE/list
Log:
ffmpeg not affected by old CVE, thus removing TODO

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-10-14 10:52:23 UTC (rev 6948)
+++ data/CVE/list	2007-10-14 12:17:34 UTC (rev 6949)
@@ -18030,8 +18030,9 @@
 CVE-2006-4799 (Buffer overflow in ffmpeg for xine-lib before 1.1.2 might allow ...)
 	{DSA-1215}
 	- xine-lib 1.1.2-1 (bug #369876; medium)
+	- ffmpeg <not-affected>
 	NOTE: according to the changelog, libxine (starting from 1.1.2-4) links dynamically against ffmpeg
-	TODO: check ffmpeg
+	NOTE: ffmpeg is already patched
 CVE-2006-4798 (SQL-Ledger before 2.4.4 stores a password in a query string, which ...)
 	- sql-ledger 2.4.5-1
 CVE-2006-4797 (Cross-site scripting (XSS) vulnerability in tag.php in CloudNine ...)




More information about the Secure-testing-commits mailing list