[Secure-testing-commits] r21305 - data/CVE

Joey Hess joeyh at alioth.debian.org
Sat Feb 16 21:14:20 UTC 2013 

Author: joeyh
Date: 2013-02-16 21:14:19 +0000 (Sat, 16 Feb 2013)
New Revision: 21305

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-02-16 18:14:10 UTC (rev 21304)
+++ data/CVE/list	2013-02-16 21:14:19 UTC (rev 21305)
@@ -13585,6 +13585,7 @@
 	- libav 6:0.8.5-1 (bug #688847)
 	[squeeze] - ffmpeg <undetermined>
 CVE-2012-2803 (Double free vulnerability in the mpeg_decode_frame function in ...)
+	{DSA-2624-1}
 	- ffmpeg <removed> (bug #688849)
 	- libav 6:0.8.5-1 (bug #688847)
 	NOTE: [squeeze] fix pending for 0.5.10
@@ -13592,6 +13593,7 @@
 	[squeeze] - ffmpeg <not-affected> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
 CVE-2012-2801 (Unspecified vulnerability in libavcodec/avs.c in FFmpeg before 0.11, ...)
+	{DSA-2624-1}
 	- libav 6:0.8.4-1 (bug #688847)
 	- ffmpeg <removed>
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
@@ -13636,6 +13638,7 @@
 	- libav 6:0.8.4-1 (bug #688847)
 	NOTE: contrary to the description, this issue is about the decode_subframe in libavcodec/wmaprodec.c
 CVE-2012-2788 (Unspecified vulnerability in the avi_read_packet function in ...)
+	{DSA-2624-1}
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
 	- ffmpeg <removed>
@@ -13650,6 +13653,7 @@
 	- libav <not-affected> (Vulnerable code not present in 0.8 version from unstable, fixed in 0.9 version in experimental)
 	- ffmpeg <not-affected> (Vulnerable code not present)
 CVE-2012-2784 (Unspecified vulnerability in the decode_pic function in ...)
+	{DSA-2624-1}
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
 	- ffmpeg <removed>
@@ -13657,6 +13661,7 @@
 	NOTE: duplicate of CVE-2012-2777
 	TODO: mark this properly as duplicate
 CVE-2012-2783 (Unspecified vulnerability in libavcodec/vp56.c in FFmpeg before 0.11, ...)
+	{DSA-2624-1}
 	- ffmpeg <removed> (bug #688849)
 	- libav 6:0.8.5-1 (bug #688847)
 	NOTE: [squeeze] fix pending for 0.5.10
@@ -13672,6 +13677,7 @@
 CVE-2012-2778
 	RESERVED
 CVE-2012-2777 (Unspecified vulnerability in the decode_pic function in ...)
+	{DSA-2624-1}
 	[squeeze] - ffmpeg 4:0.5.9-1 (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
 	- ffmpeg <removed>
@@ -18444,6 +18450,7 @@
 	- ffmpeg <removed>
 	NOTE: [squeeze] fix pending for 0.5.10
 CVE-2012-0858 (The Shorten codec (shorten.c) in libavcodec in FFmpeg 0.7.x before ...)
+	{DSA-2624-1}
 	- libav 4:0.8.1-1
 	[squeeze] - ffmpeg 4:0.5.9-1
 CVE-2012-0857 (Multiple buffer overflows in the get_qcx function in the J2K decoder ...)

More information about the Secure-testing-commits mailing list