[Secure-testing-commits] r28051 - data/CVE

Reinhard Tartler siretart at moszumanska.debian.org
Fri Aug 1 11:43:39 UTC 2014


Author: siretart
Date: 2014-08-01 11:43:39 +0000 (Fri, 01 Aug 2014)
New Revision: 28051

Modified:
   data/CVE/list
Log:
CVE-2013-0851 scheduled for next libav release

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-08-01 11:25:52 UTC (rev 28050)
+++ data/CVE/list	2014-08-01 11:43:39 UTC (rev 28051)
@@ -30306,6 +30306,9 @@
 	- libav <unfixed>
 	NOTE: looks valid as "if (buf_size < 17) { ... error... }" but at least buf[21] is used.
 	NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=63ac64864c6e0e84355aa3caa5b92208997a9a8d
+	NOTE: https://git.libav.org/?p=libav.git;a=commit;h=f9204ec56a4cf73843d1e5b8563d3584c2c05b47 (v10)
+	NOTE: https://git.libav.org/?p=libav.git;a=commit;h=e8ff7972064631afbdf240ec6bfd9dec30cf2ce8 (v9)
+	NOTE: https://git.libav.org/?p=libav.git;a=commit;h=187cfd3c13a1deb47661486824a5b8f41e158a7a (v0.8)
 CVE-2013-0850 (The decode_slice_header function in libavcodec/h264.c in FFmpeg before ...)
 	{DSA-2793-1}
 	- ffmpeg <end-of-life> (Backports to 0.5.x not useful, too many checks missing)




More information about the Secure-testing-commits mailing list