[Secure-testing-commits] r22426 - data/CVE

Raphael Geissert atomo64-guest at alioth.debian.org
Fri May 31 09:23:22 UTC 2013


Author: atomo64-guest
Date: 2013-05-31 09:23:22 +0000 (Fri, 31 May 2013)
New Revision: 22426

Modified:
   data/CVE/list
Log:
more info about ffmpeg 1.1.3 issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-05-31 09:10:48 UTC (rev 22425)
+++ data/CVE/list	2013-05-31 09:23:22 UTC (rev 22426)
@@ -6906,48 +6906,55 @@
 	- chromium-browser 25.0.1364.97-1
 CVE-2013-0879 (Google Chrome before 25.0.1364.97 on Windows and Linux, and before ...)
 	- chromium-browser 25.0.1364.97-1
-CVE-2013-0878
+CVE-2013-0878 [libavcodec/targa.c out of array accesses]
 	RESERVED
 	- ffmpeg <removed>
 	- libav <unfixed>
 	TODO: check
 	NOTE: fixed in ffmpeg 1.1.3
-CVE-2013-0877
+	NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=796012af6c780b5b13ebca39a491f215515a18fe
+CVE-2013-0877 [libavcodec/sanm.c out of array accesses]
 	RESERVED
 	- ffmpeg <removed>
 	- libav <unfixed>
 	TODO: check
 	NOTE: fixed in ffmpeg 1.1.3
-CVE-2013-0876
+	NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=365270aec5c2b9284230abc702b11168818f14cf
+CVE-2013-0876 [libavcodec/sanm.c integer overflow and out of array accesses]
 	RESERVED
 	- ffmpeg <removed>
 	- libav <unfixed>
 	TODO: check
 	NOTE: fixed in ffmpeg 1.1.3
-CVE-2013-0875
+	NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=5260edee7e5bd975837696c8c8c1a80eb2fbd7c1
+CVE-2013-0875 [libavcodec/pngdec.c dont access out array elements]
 	RESERVED
 	- ffmpeg <removed>
 	- libav <unfixed>
 	TODO: check
 	NOTE: fixed in ffmpeg 1.1.3
-CVE-2013-0874
+	NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=1ac0fa50eff30d413206cffa5f47f7fe6d4849b1
+CVE-2013-0874 [libavcodec/tiff.c out of array accesses]
 	RESERVED
 	- ffmpeg <removed>
 	- libav <unfixed>
 	TODO: check
 	NOTE: fixed in ffmpeg 1.1.3
-CVE-2013-0873
+	NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=e1219cdaf9fb4bc8cea410e1caf802373c1bfe51
+CVE-2013-0873 [libavcodec/shorten.c freeing invalid addresses]
 	RESERVED
 	- ffmpeg <removed>
 	- libav <unfixed>
 	TODO: check
 	NOTE: fixed in ffmpeg 1.1.3
-CVE-2013-0872
+	NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=4f1279154ee9baf2078241bf5619774970d18b25
+CVE-2013-0872 [libswresample/swresample.c out of array accesses]
 	RESERVED
 	- ffmpeg <removed>
 	- libav <unfixed>
 	TODO: check
 	NOTE: fixed in ffmpeg 1.1.3
+	NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=21cd905cd44a4bbafe8631bbaa6021d328413ce5
 CVE-2013-0871 (Race condition in the ptrace functionality in the Linux kernel before ...)
 	{DSA-2632-1}
 	- linux 3.2.39-1




More information about the Secure-testing-commits mailing list