[Secure-testing-commits] r16533 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Sun Apr 17 17:02:38 UTC 2011
Author: jmm
Date: 2011-04-17 17:02:34 +0000 (Sun, 17 Apr 2011)
New Revision: 16533
Modified:
data/CVE/list
Log:
Debian's ffmpeg switched to the libav fork
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-04-16 17:57:50 UTC (rev 16532)
+++ data/CVE/list 2011-04-17 17:02:34 UTC (rev 16533)
@@ -1220,8 +1220,8 @@
- chromium-browser 10.0.648.127~r76697-1
[squeeze] - chromium-browser <not-affected>
[wheezy] - chromium-browser <not-affected>
- - ffmpeg <undetermined>
- TODO: need info on ffmpeg
+ - libav <undetermined>
+ TODO: need info on ffmpeg/libav
CVE-2011-1197 (Google Chrome before 10.0.648.127 does not properly perform table ...)
{DSA-2189-1}
- chromium-browser 10.0.648.127~r76697-1
@@ -1231,8 +1231,8 @@
- chromium-browser 10.0.648.127~r76697-1
[squeeze] - chromium-browser <not-affected>
[wheezy] - chromium-browser <not-affected>
- - ffmpeg <undetermined>
- TODO: need info on ffmpeg
+ - libav <undetermined>
+ TODO: need info on ffmpeg/libav
CVE-2011-1195 (Use-after-free vulnerability in Google Chrome before 10.0.648.127 ...)
- chromium-browser 10.0.648.127~r76697-1
[squeeze] - chromium-browser <not-affected>
@@ -2948,7 +2948,8 @@
NOTE: recheck when 0.6.x gets uploaded
CVE-2010-4704 (libavcodec/vorbis_dec.c in the Vorbis decoder in FFmpeg 0.6.1 and ...)
{DSA-2165-1}
- - ffmpeg <unfixed> (low; bug #611495)
+ - libav 4:0.6.2-1 (low; bug #611495)
+ - ffmpeg <removed> (low; bug #611495)
- ffmpeg-debian <removed> (low)
NOTE: this is a crash found by fuzzing and not clearly exploitable (can be combined with other fixes so low urgency)
CVE-2010-XXXX
More information about the Secure-testing-commits
mailing list