[Secure-testing-commits] r27479 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Jun 27 07:58:19 UTC 2014
Author: jmm
Date: 2014-06-27 07:58:19 +0000 (Fri, 27 Jun 2014)
New Revision: 27479
Modified:
data/CVE/list
Log:
ffmpeg eol
add libav fix
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-06-27 07:42:03 UTC (rev 27478)
+++ data/CVE/list 2014-06-27 07:58:19 UTC (rev 27479)
@@ -89,12 +89,11 @@
TODO: check
CVE-2014-4610
RESERVED
- - ffmpeg <removed>
- TODO: check
+ - ffmpeg <end-of-life> (Backports to 0.5.x not useful, too many checks missing)
CVE-2014-4609
RESERVED
- libav <unfixed>
- TODO: check
+ NOTE: http://git.libav.org/?p=libav.git;a=commit;h=ccda51b14c0fcae2fad73a24872dce75a7964996
CVE-2014-4608
RESERVED
- linux <unfixed>
@@ -11568,7 +11567,7 @@
- keystone 2014.1-5 (bug #749026)
[wheezy] - keystone <not-affected>
CVE-2014-0203 (The __do_follow_link function in fs/namei.c in the Linux kernel before ...)
- - linux <not-affected> (Vulnerable code not present; fixed in linux v2.6.33)
+ - linux 2.6.33-1
- linux-2.6 2.6.37-1
NOTE: upstream fix: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=86acdca1b63e6890540fa19495cfc708beff3d8b (v2.6.33)
CVE-2014-0202 (The setup script in ovirt-engine-dwh, as used in the Red Hat ...)
More information about the Secure-testing-commits
mailing list