[Secure-testing-commits] r28166 - data/CVE

Reinhard Tartler siretart at moszumanska.debian.org
Sat Aug 9 23:38:02 UTC 2014


Author: siretart
Date: 2014-08-09 23:38:02 +0000 (Sat, 09 Aug 2014)
New Revision: 28166

Modified:
   data/CVE/list
Log:
CVE-2013-3672 libav

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-08-09 23:37:54 UTC (rev 28165)
+++ data/CVE/list	2014-08-09 23:38:02 UTC (rev 28166)
@@ -22580,9 +22580,8 @@
 	- libav <not-affected> (Doesn't affect libav, specific to current ffmpeg)
 CVE-2013-3672 (The mm_decode_inter function in mmvideo.c in libavcodec in FFmpeg ...)
 	- ffmpeg <end-of-life> (Backports to 0.5.x not useful, too many checks missing)
-	- libav <undetermined>
+	[wheezy] - libav 6:0.8.15-1
 	NOTE: Fix in ffmpeg: http://git.videolan.org/?p=ffmpeg.git;a=commit;h=7fa6db2545643efb4fe2e0bb501fa50af35a6330
-	NOTE: libav and ffmpeg code bases have diverged too much, unclear whether libav is affected
 CVE-2013-3671 (The format_line function in log.c in libavutil in FFmpeg before 1.2.1 ...)
 	- ffmpeg <not-affected> (Doesn't affect libav, specific to current ffmpeg)
 	- libav <not-affected> (Doesn't affect libav, specific to current ffmpeg)




More information about the Secure-testing-commits mailing list