[Secure-testing-commits] r9266 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Tue Jul 8 23:15:15 UTC 2008
Author: jmm-guest
Date: 2008-07-08 23:15:14 +0000 (Tue, 08 Jul 2008)
New Revision: 9266
Modified:
data/CVE/list
Log:
new libavformat issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-07-08 22:56:18 UTC (rev 9265)
+++ data/CVE/list 2008-07-08 23:15:14 UTC (rev 9266)
@@ -1,3 +1,7 @@
+CVE-2008-XXXX [ffmpeg STR demuxer buffer overflow]
+ - ffmpeg-free <unfixed> (bug filed)
+ NOTE: http://svn.mplayerhq.hu/ffmpeg?view=rev&revision=13993
+ TODO: Check the various embedders in Etch, horray for librification in Lenny
CVE-2008-3068 (Microsoft Crypto API 5.131.2600.2180 through 6.0, as used in Outlook, ...)
NOT-FOR-US: Microsoft Crypto API
CVE-2008-3067 (sudo in SUSE openSUSE 10.3 does not clear the stdin buffer when ...)
More information about the Secure-testing-commits
mailing list