[Secure-testing-commits] r9266 - data/CVE

jmm-guest at alioth.debian.org jmm-guest at alioth.debian.org
Tue Jul 8 23:15:15 UTC 2008


Author: jmm-guest
Date: 2008-07-08 23:15:14 +0000 (Tue, 08 Jul 2008)
New Revision: 9266

Modified:
   data/CVE/list
Log:
new libavformat issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-07-08 22:56:18 UTC (rev 9265)
+++ data/CVE/list	2008-07-08 23:15:14 UTC (rev 9266)
@@ -1,3 +1,7 @@
+CVE-2008-XXXX [ffmpeg STR demuxer buffer overflow]
+	- ffmpeg-free <unfixed> (bug filed)
+        NOTE: http://svn.mplayerhq.hu/ffmpeg?view=rev&revision=13993 
+        TODO: Check the various embedders in Etch, horray for librification in Lenny
 CVE-2008-3068 (Microsoft Crypto API 5.131.2600.2180 through 6.0, as used in Outlook, ...)
 	NOT-FOR-US: Microsoft Crypto API
 CVE-2008-3067 (sudo in SUSE openSUSE 10.3 does not clear the stdin buffer when ...)




More information about the Secure-testing-commits mailing list