[Secure-testing-commits] r28051 - data/CVE
Reinhard Tartler
siretart at moszumanska.debian.org
Fri Aug 1 11:43:39 UTC 2014
Author: siretart
Date: 2014-08-01 11:43:39 +0000 (Fri, 01 Aug 2014)
New Revision: 28051
Modified:
data/CVE/list
Log:
CVE-2013-0851 scheduled for next libav release
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-08-01 11:25:52 UTC (rev 28050)
+++ data/CVE/list 2014-08-01 11:43:39 UTC (rev 28051)
@@ -30306,6 +30306,9 @@
- libav <unfixed>
NOTE: looks valid as "if (buf_size < 17) { ... error... }" but at least buf[21] is used.
NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=63ac64864c6e0e84355aa3caa5b92208997a9a8d
+ NOTE: https://git.libav.org/?p=libav.git;a=commit;h=f9204ec56a4cf73843d1e5b8563d3584c2c05b47 (v10)
+ NOTE: https://git.libav.org/?p=libav.git;a=commit;h=e8ff7972064631afbdf240ec6bfd9dec30cf2ce8 (v9)
+ NOTE: https://git.libav.org/?p=libav.git;a=commit;h=187cfd3c13a1deb47661486824a5b8f41e158a7a (v0.8)
CVE-2013-0850 (The decode_slice_header function in libavcodec/h264.c in FFmpeg before ...)
{DSA-2793-1}
- ffmpeg <end-of-life> (Backports to 0.5.x not useful, too many checks missing)
More information about the Secure-testing-commits
mailing list