[Secure-testing-commits] r23381 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Wed Aug 21 20:06:49 UTC 2013
Author: carnil
Date: 2013-08-21 20:06:48 +0000 (Wed, 21 Aug 2013)
New Revision: 23381
Modified:
data/CVE/list
Log:
CVEs assigned for libav/ffmpeg
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-08-21 19:47:14 UTC (rev 23380)
+++ data/CVE/list 2013-08-21 20:06:48 UTC (rev 23381)
@@ -1,15 +1,3 @@
-CVE-2013-XXXX [g2meet out of array write]
- - ffmpeg <not-affected> (g2meet codec not present in 0.5 ffmpeg)
- - libav <not-affected> (g2meet codec not present in libav)
- NOTE: https://github.com/FFmpeg/FFmpeg/commit/2960576378d17d71cc8dccc926352ce568b5eec1
-CVE-2013-XXXX [libavfilter out of array writes]
- - ffmpeg <not-affected> (Affected video filters not present in ffmpeg 0.5)
- - libav <unfixed>
- NOTE: https://github.com/FFmpeg/FFmpeg/commit/e43a0a232dbf6d3c161823c2e07c52e76227a1bc
-CVE-2013-XXXX [av_reallocp_array]
- - ffmpeg <not-affected> (Affected function codec not present in 0.5 ffmpeg)
- - libav <not-affected> (Affected function not present in libav)
- NOTE: https://github.com/FFmpeg/FFmpeg/commit/c94f9e854228e0ea00e1de8769d8d3f7cab84a55
CVE-2013-5313 (Cross-site request forgery (CSRF) vulnerability in ...)
TODO: check
CVE-2013-5312 (Multiple cross-site scripting (XSS) vulnerabilities in Vastal I-Tech ...)
@@ -2273,12 +2261,21 @@
RESERVED
CVE-2013-4266
RESERVED
-CVE-2013-4265
+CVE-2013-4265 [av_reallocp_array]
RESERVED
-CVE-2013-4264
+ - ffmpeg <not-affected> (Affected function codec not present in 0.5 ffmpeg)
+ - libav <not-affected> (Affected function not present in libav)
+ NOTE: https://github.com/FFmpeg/FFmpeg/commit/c94f9e854228e0ea00e1de8769d8d3f7cab84a55
+CVE-2013-4264 [g2meet out of array write]
RESERVED
-CVE-2013-4263
+ - ffmpeg <not-affected> (g2meet codec not present in 0.5 ffmpeg)
+ - libav <not-affected> (g2meet codec not present in libav)
+ NOTE: https://github.com/FFmpeg/FFmpeg/commit/2960576378d17d71cc8dccc926352ce568b5eec1
+CVE-2013-4263 [libavfilter out of array writes]
RESERVED
+ - ffmpeg <not-affected> (Affected video filters not present in ffmpeg 0.5)
+ - libav <unfixed>
+ NOTE: https://github.com/FFmpeg/FFmpeg/commit/e43a0a232dbf6d3c161823c2e07c52e76227a1bc
CVE-2013-4262
RESERVED
CVE-2013-4261 [DoS]
More information about the Secure-testing-commits
mailing list