[Secure-testing-commits] r20920 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Mon Jan 14 16:43:21 UTC 2013
Author: jmm
Date: 2013-01-14 16:43:21 +0000 (Mon, 14 Jan 2013)
New Revision: 20920
Modified:
data/CVE/list
Log:
ettercap no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-01-14 11:35:24 UTC (rev 20919)
+++ data/CVE/list 2013-01-14 16:43:21 UTC (rev 20920)
@@ -1163,7 +1163,8 @@
RESERVED
CVE-2013-0722 [stack-based buffer overflow when parsing hosts list]
RESERVED
- - ettercap 1:0.7.5.1-2 (bug #697987)
+ - ettercap 1:0.7.5.1-2 (low; bug #697987)
+ [squeeze] - ettercap <no-dsa> (Minor issue)
NOTE: http://www.openwall.com/lists/oss-security/2013/01/10/2
NOTE: http://www.exploit-db.com/exploits/23945/
NOTE: https://secunia.com/advisories/51731/
@@ -12200,12 +12201,10 @@
[squeeze] - ffmpeg <unfixed> (bug #688849)
- libav 6:0.8.4-1 (bug #688847)
CVE-2012-2774 (The ff_MPV_frame_start function in libavcodec/mpegvideo.c in FFmpeg ...)
- - ffmpeg <undetermined> (bug #688849)
- - libav <not-affected> (bug #688847)
+ - ffmpeg <not-affected> (there is no crash, just a couple uninitialized reads, harmless according to Janne)
+ - libav <not-affected> (there is no crash, just a couple uninitialized reads, harmless according to Janne)
NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=59a4b73531428d2f420b4dad545172c8483ced0f
NOTE: patch proposed: http://patches.libav.org/patch/32644/
- NOTE: Reproducer needed
- NOTE: there is no crash, just a couple uninitialized reads, harmless according to Janne
CVE-2012-2773
RESERVED
CVE-2012-2772 (Unspecified vulnerability in the ff_rv34_decode_frame function in ...)
More information about the Secure-testing-commits
mailing list