[Secure-testing-commits] r24752 - data/CVE
Reinhard Tartler
siretart at moszumanska.debian.org
Sat Dec 14 19:29:24 UTC 2013
Author: siretart
Date: 2013-12-14 19:29:24 +0000 (Sat, 14 Dec 2013)
New Revision: 24752
Modified:
data/CVE/list
Log:
mark CVE-2013-0848 as undetermined
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-12-14 19:28:12 UTC (rev 24751)
+++ data/CVE/list 2013-12-14 19:29:24 UTC (rev 24752)
@@ -17059,10 +17059,12 @@
NOTE: Needed in ffmpeg 0.5
CVE-2013-0848 (The decode_init function in libavcodec/huffyuv.c in FFmpeg before 1.1 ...)
- ffmpeg <removed>
- - libav <unfixed>
+ - libav <undetermined>
NOTE: No related changes in libav git so far
NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=6abb9a901fca27da14d4fffbb01948288b5da3ba
NOTE: Needed in ffmpeg 0.5
+ NOTE: Unclear if this really affects libav due to different code
+ TODO: Find a testcase in form of a sample
CVE-2013-0847 (The ff_id3v2_parse function in libavformat/id3v2.c in FFmpeg before ...)
- ffmpeg <not-affected> (Affected code not present in ffmpeg 0.5)
- libav <not-affected> (Code in libav is different, read_ttag)
More information about the Secure-testing-commits
mailing list