[Secure-testing-commits] r26032 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon Mar 10 06:01:45 UTC 2014
Author: jmm
Date: 2014-03-10 06:01:44 +0000 (Mon, 10 Mar 2014)
New Revision: 26032
Modified:
data/CVE/list
Log:
libav triage
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-03-09 22:02:31 UTC (rev 26031)
+++ data/CVE/list 2014-03-10 06:01:44 UTC (rev 26032)
@@ -123,7 +123,6 @@
CVE-2014-2263 (The mpegts_write_pmt function in the MPEG2 transport stream (aka DVB) ...)
- ffmpeg <removed>
- libav <unfixed>
- TODO: check
CVE-2014-2262 (Buffer overflow in the client application in Base SAS 9.2 TS2M3, SAS ...)
NOT-FOR-US: Base SAS
CVE-2014-2261
@@ -425,17 +424,16 @@
CVE-2014-2100
RESERVED
CVE-2014-2099 (The msrle_decode_frame function in libavcodec/msrle.c in FFmpeg before ...)
- - ffmpeg <removed>
+ - ffmpeg <not-affected> (Vulnerable code not present)
- libav <unfixed>
- TODO: check
CVE-2014-2098 (libavcodec/wmalosslessdec.c in FFmpeg before 2.1.4 uses an incorrect ...)
- - ffmpeg <removed>
+ - ffmpeg <not-affected> (Vulnerable code not present)
- libav <unfixed>
- TODO: check
+ [wheezy] - libav <not-affected> (Vulnerable code not present)
CVE-2014-2097 (The tak_decode_frame function in libavcodec/takdec.c in FFmpeg before ...)
- - ffmpeg <removed>
+ - ffmpeg <not-affected> (Vulnerable code not present)
- libav <unfixed>
- TODO: check
+ [wheezy] - libav <not-affected> (Vulnerable code not present)
CVE-2014-2092 (Cross-site scripting (XSS) vulnerability in ...)
NOT-FOR-US: CMS Made Simple
CVE-2014-2091 (Cross-site scripting (XSS) vulnerability in ...)
More information about the Secure-testing-commits
mailing list