[Secure-testing-commits] r28092 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Aug 5 04:47:04 UTC 2014
Author: carnil
Date: 2014-08-05 04:44:22 +0000 (Tue, 05 Aug 2014)
New Revision: 28092
Modified:
data/CVE/list
Log:
Merge the not-affected entries for CVE-2013-7021
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-08-05 03:12:48 UTC (rev 28091)
+++ data/CVE/list 2014-08-05 04:44:22 UTC (rev 28092)
@@ -12650,11 +12650,9 @@
NOTE: Only present in libav trunk
CVE-2013-7021 (The filter_frame function in libavfilter/vf_fps.c in FFmpeg before 2.1 ...)
- ffmpeg <not-affected> (Vulnerable code not present)
- - libav <not-affected>
- [wheezy] - libav <not-affected> (Vulnerable code not present)
+ - libav <not-affected> (Vulnerable code not present)
NOTE: https://github.com/FFmpeg/FFmpeg/commit/cdd5df8189ff1537f7abe8defe971f80602cc2d2
NOTE: https://trac.ffmpeg.org/ticket/2905
- NOTE: [Anton] appears to not be present in any version of libav
CVE-2013-7020 (The read_header function in libavcodec/ffv1dec.c in FFmpeg before 2.1 ...)
- ffmpeg <end-of-life> (Backports to 0.5.x not useful, too many checks missing)
- libav <undetermined>
More information about the Secure-testing-commits
mailing list