[Secure-testing-commits] r28165 - data/CVE
Reinhard Tartler
siretart at moszumanska.debian.org
Sat Aug 9 23:37:54 UTC 2014
Author: siretart
Date: 2014-08-09 23:37:54 +0000 (Sat, 09 Aug 2014)
New Revision: 28165
Modified:
data/CVE/list
Log:
CVE-2013-0848 libav
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-08-09 23:37:46 UTC (rev 28164)
+++ data/CVE/list 2014-08-09 23:37:54 UTC (rev 28165)
@@ -30410,10 +30410,9 @@
NOTE: Needed in ffmpeg 0.5
CVE-2013-0848 (The decode_init function in libavcodec/huffyuv.c in FFmpeg before 1.1 ...)
- ffmpeg <end-of-life> (Backports to 0.5.x not useful, too many checks missing)
- - libav <undetermined>
+ [wheezy] - libav 6:0.8.15-1
NOTE: Fix in ffmpeg: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=6abb9a901fca27da14d4fffbb01948288b5da3ba
NOTE: Needed in ffmpeg 0.5
- NOTE: Unclear if this really affects libav due to different code, need to find a test case in form of a sample
CVE-2013-0847 (The ff_id3v2_parse function in libavformat/id3v2.c in FFmpeg before ...)
- ffmpeg <not-affected> (Affected code not present in ffmpeg 0.5)
- libav <not-affected> (Code in libav is different, read_ttag)
More information about the Secure-testing-commits
mailing list