[Secure-testing-commits] r20912 - data/CVE

Reinhard Tartler siretart at alioth.debian.org
Sun Jan 13 15:29:54 UTC 2013 

Author: siretart
Date: 2013-01-13 15:29:54 +0000 (Sun, 13 Jan 2013)
New Revision: 20912

Modified:
   data/CVE/list
Log:
new libav upload fixes various CVE entries

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-01-13 01:06:08 UTC (rev 20911)
+++ data/CVE/list	2013-01-13 15:29:54 UTC (rev 20912)
@@ -12106,78 +12106,62 @@
 	RESERVED
 CVE-2012-2804 (Unspecified vulnerability in libavcodec/indeo3.c in FFmpeg before 0.11 ...)
 	- ffmpeg <removed> (bug #688849)
-	- libav <unfixed> (bug #688847)
-	NOTE: scheduled for libav 0.8.5
+	- libav 6:0.8.5-1 (bug #688847)
 CVE-2012-2803 (Double free vulnerability in the mpeg_decode_frame function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
-	- libav <unfixed> (bug #688847)
-	NOTE: scheduled for libav 0.8.5
+	- libav 6:0.8.5-1 (bug #688847)
 CVE-2012-2802 (Unspecified vulnerability in the ac3_decode_frame function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2801 (Unspecified vulnerability in libavcodec/avs.c in FFmpeg before 0.11 ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2800 (Unspecified vulnerability in the ff_ivi_process_empty_tile function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2799 (Unspecified vulnerability in libavcodec/wmalosslessdec.c in FFmpeg ...)
 	- libav <not-affected> (Vulnerable code not present in 0.8 version from unstable, fixed in 0.9 version in experimental)
 	- ffmpeg <not-affected> (Vulnerable code not present)
 CVE-2012-2798 (Unspecified vulnerability in the decode_dds1 function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2797 (Unspecified vulnerability in the decode_frame_mp3on4 function in ...)
 	- ffmpeg <removed> (bug #688849)
-	- libav <unfixed> (bug #688847)
+	- libav 6:0.8.5-1 (bug #688847)
 	NOTE: patch proposed: http://patches.libav.org/patch/32642/
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2796 (Unspecified vulnerability in the vc1_decode_frame function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2795 (Multiple unspecified vulnerabilities in libavcodec/wmalosslessdec.c in ...)
 	- libav <not-affected> (Vulnerable code not present in 0.8 version from unstable, fixed in 0.9 version in experimental)
 	- ffmpeg <not-affected> (Vulnerable code not present)
 CVE-2012-2794 (Unspecified vulnerability in the decode_mb_info function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2793 (Unspecified vulnerability in the lag_decode_zero_run_line function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2792 (Unspecified vulnerability in the decode_init function in ...)
 	- libav <not-affected> (Vulnerable code not present in 0.8 version from unstable, fixed in 0.9 version in experimental)
 	- ffmpeg <not-affected> (Vulnerable code not present)
 CVE-2012-2791 (Multiple unspecified vulnerabilities in the (1) decode_band_hdr ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
-	- libav <unfixed> (bug #688847)
-	NOTE: scheduled for libav 0.8.5
+	- libav 6:0.8.5-1 (bug #688847)
 CVE-2012-2790 (Unspecified vulnerability in the read_var_block_data function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2789 (Unspecified vulnerability in the avi_read_packet function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2788 (Unspecified vulnerability in the avi_read_packet function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2787 (Unspecified vulnerability in the decode_frame function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2786 (Unspecified vulnerability in the decode_wdlt function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2785 (Multiple unspecified vulnerabilities in libavcodec/wmalosslessdec.c in ...)
 	- libav <not-affected> (Vulnerable code not present in 0.8 version from unstable, fixed in 0.9 version in experimental)
 	- ffmpeg <not-affected> (Vulnerable code not present)
@@ -12188,8 +12172,7 @@
 	TODO: mark this properly as duplicate
 CVE-2012-2783 (Unspecified vulnerability in libavcodec/vp56.c in FFmpeg before 0.11 ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
-	- libav <unfixed> (bug #688847)
-	NOTE: scheduled for libav 0.8.5
+	- libav 6:0.8.5-1 (bug #688847)
 CVE-2012-2782 (Unspecified vulnerability in the decode_slice_header function in ...)
 	- libav <not-affected> (Doesn't affect libav)
 CVE-2012-2781
@@ -12199,21 +12182,17 @@
 CVE-2012-2779 (Unspecified vulnerability in the decode_frame function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2778
 	RESERVED
 CVE-2012-2777 (Unspecified vulnerability in the decode_pic function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2776 (Unspecified vulnerability in the decode_cell_data function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2775 (Unspecified vulnerability in the read_var_block_data function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2774 (The ff_MPV_frame_start function in libavcodec/mpegvideo.c in FFmpeg ...)
 	- ffmpeg <undetermined> (bug #688849)
 	- libav <not-affected> (bug #688847)
@@ -12226,7 +12205,6 @@
 CVE-2012-2772 (Unspecified vulnerability in the ff_rv34_decode_frame function in ...)
 	[squeeze] - ffmpeg <unfixed> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	NOTE: scheduled for libav 0.8.5
 CVE-2012-2771
 	RESERVED
 CVE-2012-2770 (The Authen::ExternalAuth extension before 0.11 for Best Practical ...)

More information about the Secure-testing-commits mailing list