[Secure-testing-commits] r21880 - data/CVE
Michael Gilbert
mgilbert at alioth.debian.org
Mon Apr 8 01:15:07 UTC 2013
Author: mgilbert
Date: 2013-04-08 01:15:07 +0000 (Mon, 08 Apr 2013)
New Revision: 21880
Modified:
data/CVE/list
Log:
ffmpeg in squeeze not affected by a few issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-04-08 00:59:58 UTC (rev 21879)
+++ data/CVE/list 2013-04-08 01:15:07 UTC (rev 21880)
@@ -15958,7 +15958,7 @@
- chromium-browser 22.0.1229.94~r161065-1
- libav 6:0.8.5-1 (bug #694483)
- ffmpeg <removed>
- [squeeze] - ffmpeg <undetermined>
+ [squeeze] - ffmpeg <not-affected> (vulnerable code not present)
NOTE: https://chromiumcodereview.appspot.com/10829204
NOTE: proposed patch for libav: http://patches.libav.org/patch/32636/
NOTE: fixed with http://git.libav.org/?p=libav.git;a=commitdiff;h=7751e4693dd10ec98c20fbd9887233b575034272
@@ -16176,7 +16176,7 @@
CVE-2012-2804 (Unspecified vulnerability in libavcodec/indeo3.c in FFmpeg before 0.11 ...)
- ffmpeg <removed> (bug #688849)
- libav 6:0.8.5-1 (bug #688847)
- [squeeze] - ffmpeg <undetermined>
+ [squeeze] - ffmpeg <not-affected> (vulnerable code not present)
CVE-2012-2803 (Double free vulnerability in the mpeg_decode_frame function in ...)
{DSA-2624-1}
- ffmpeg <removed> (bug #688849)
@@ -16202,7 +16202,7 @@
CVE-2012-2797 (Unspecified vulnerability in the decode_frame_mp3on4 function in ...)
- ffmpeg <removed> (bug #688849)
- libav 6:0.8.5-1 (bug #688847)
- [squeeze] - ffmpeg <undetermined>
+ [squeeze] - ffmpeg <not-affected> (vulnerable code not present)
NOTE: patch proposed: http://patches.libav.org/patch/32642/
CVE-2012-2796 (Unspecified vulnerability in the vc1_decode_frame function in ...)
[squeeze] - ffmpeg <not-affected> (bug #688849)
More information about the Secure-testing-commits
mailing list