[Secure-testing-commits] r28812 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Sep 16 05:10:23 UTC 2014
Author: carnil
Date: 2014-09-16 05:10:23 +0000 (Tue, 16 Sep 2014)
New Revision: 28812
Modified:
data/CVE/list
Log:
Add two notes for ffmpeg in experimental
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-09-16 04:55:12 UTC (rev 28811)
+++ data/CVE/list 2014-09-16 05:10:23 UTC (rev 28812)
@@ -2434,12 +2434,14 @@
- ffmpeg <end-of-life> (Backports to 0.5.x not useful, too many checks missing)
- libav <unfixed>
NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commit;h=3539d6c63a16e1b2874bb037a86f317449c58770
+ NOTE: new ffmpeg now in experimental, CVE fixed in 7:2.4-1
CVE-2014-5271 [buffer overflow]
RESERVED
- ffmpeg <not-affected> (Vulnerable code not present)
- libav <unfixed>
[wheezy] - libav <not-affected> (Vulnerable code not present)
NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commit;h=52b81ff4635c077b2bc8b8d3637d933b6629d803
+ NOTE: new ffmpeg now in experimental, CVE fixed in 7:2.4-1
CVE-2014-5262 (SQL injection vulnerability in the graph settings script ...)
{DSA-3007-1 DLA-40-1}
- cacti 0.8.8b+dfsg-8
More information about the Secure-testing-commits
mailing list