[Secure-testing-commits] r29193 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Oct 1 20:17:28 UTC 2014
Author: carnil
Date: 2014-10-01 20:17:28 +0000 (Wed, 01 Oct 2014)
New Revision: 29193
Modified:
data/CVE/list
Log:
Add fixed version for CVE-2009-4639/ffmpeg
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-10-01 20:10:30 UTC (rev 29192)
+++ data/CVE/list 2014-10-01 20:17:28 UTC (rev 29193)
@@ -81255,9 +81255,11 @@
- ffmpeg 4:0.5+svn20090706-3 (bug #550442)
- ffmpeg-debian <removed>
CVE-2009-4639 (The av_rescale_rnd function in the AVI demuxer in FFmpeg 0.5 allows ...)
- - ffmpeg <unfixed> (unimportant; bug #550442)
+ - ffmpeg 7:2.4.1-1 (unimportant; bug #550442)
- ffmpeg-debian <removed> (unimportant)
NOTE: denial-of-service only, so not worth worrying about
+ NOTE: http://thread.gmane.org/gmane.comp.video.ffmpeg.devel/97154/focus=97156
+ NOTE: http://thread.gmane.org/gmane.comp.video.ffmpeg.issues/6111/focus=6116
CVE-2009-4638 (Integer overflow in FFmpeg 0.5 allows remote attackers to cause a ...)
{DSA-2000-1}
- ffmpeg 4:0.5+svn20090706-3 (bug #550442)
More information about the Secure-testing-commits
mailing list