[Secure-testing-commits] r30400 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Nov 28 06:14:01 UTC 2014
Author: carnil
Date: 2014-11-28 06:14:01 +0000 (Fri, 28 Nov 2014)
New Revision: 30400
Modified:
data/CVE/list
Log:
Update entry for CVE-2014-8546/ffmpeg
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-28 04:16:11 UTC (rev 30399)
+++ data/CVE/list 2014-11-28 06:14:01 UTC (rev 30400)
@@ -1769,10 +1769,10 @@
- libav <unfixed>
NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commit;h=8f1457864be8fb9653643519dea1c6492f1dde57
CVE-2014-8546 (Integer underflow in libavcodec/cinepak.c in FFmpeg before 2.4.2 ...)
- - ffmpeg <undetermined>
+ - ffmpeg 7:2.4.3-1
+ [squeeze] - ffmpeg <end-of-life> (Backports to 0.5.x not useful, too many checks missing)
- libav <unfixed>
NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commit;h=e7e5114c506957f40aafd794e06de1a7e341e9d5
- TODO: check, not sure if patch correct, is applied in 7:2.4.3-1
CVE-2014-8545 (libavcodec/pngdec.c in FFmpeg before 2.4.2 accepts the ...)
- ffmpeg 7:2.4.3-1
[squeeze] - ffmpeg <end-of-life> (Backports to 0.5.x not useful, too many checks missing)
More information about the Secure-testing-commits
mailing list