[Secure-testing-commits] r28076 - data/CVE
Reinhard Tartler
siretart at moszumanska.debian.org
Mon Aug 4 12:48:17 UTC 2014
Author: siretart
Date: 2014-08-04 12:48:17 +0000 (Mon, 04 Aug 2014)
New Revision: 28076
Modified:
data/CVE/list
Log:
CVE-2013-0860 libav comment from upstream
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-08-04 12:48:09 UTC (rev 28075)
+++ data/CVE/list 2014-08-04 12:48:17 UTC (rev 28076)
@@ -30272,6 +30272,7 @@
- libav <undetermined>
NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=23318a57358358e7a4dc551e830e4503f0638cfe
NOTE: libav and ffmpeg code bases have diverged too much, unclear whether libav is affected
+ NOTE: [Vittorio] looks strange, I don't think it happens with the new code, but a second opinion is welcome
CVE-2013-0859 (The add_doubles_metadata function in libavcodec/tiff.c in FFmpeg ...)
- ffmpeg <not-affected> (These changes are specific to current ffmpeg and don't affect ffmpeg 0.5)
- libav <not-affected> ((These changes are specific to ffmpeg and don't affect libav)
More information about the Secure-testing-commits
mailing list