[Secure-testing-commits] r14204 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Sun Mar 7 00:17:04 UTC 2010
Author: gilbert-guest
Date: 2010-03-07 00:16:58 +0000 (Sun, 07 Mar 2010)
New Revision: 14204
Modified:
data/CVE/list
Log:
ffmpeg issues fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-03-07 00:03:05 UTC (rev 14203)
+++ data/CVE/list 2010-03-07 00:16:58 UTC (rev 14204)
@@ -761,7 +761,7 @@
CVE-2009-4643 (Stack-based buffer overflow in dsInstallerService.dll in the Juniper ...)
NOT-FOR-US: Juniper Installer Service
CVE-2009-XXXX [ffmpeg vulnerabilities]
- - ffmpeg <unfixed> (medium; bug #570713; bug #550442)
+ - ffmpeg 0.5.1-1 (medium; bug #570713; bug #550442)
- ffmpeg-debian <removed> (medium)
CVE-2010-XXXX [dillo improper restriction of path in cookies]
- dillo <undetermined>
@@ -967,8 +967,9 @@
- ffmpeg 4:0.5+svn20090706-3
- ffmpeg-debian <removed>
CVE-2009-4639 (The av_rescale_rnd function in the AVI demuxer in FFmpeg 0.5 allows ...)
- - ffmpeg <unfixed>
+ - ffmpeg <unfixed> (unimportant)
- ffmpeg-debian <removed>
+ NOTE: denial-of-service only, so not worth worrying about
CVE-2009-4638 (Integer overflow in FFmpeg 0.5 allows remote attackers to cause a ...)
{DSA-2000-1}
- ffmpeg 4:0.5+svn20090706-3
More information about the Secure-testing-commits
mailing list