[Secure-testing-commits] r29111 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat Sep 27 12:37:48 UTC 2014 

Author: carnil
Date: 2014-09-27 12:37:48 +0000 (Sat, 27 Sep 2014)
New Revision: 29111

Modified:
   data/CVE/list
Log:
Add fixed version from the 0.11 release

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-09-27 12:33:03 UTC (rev 29110)
+++ data/CVE/list	2014-09-27 12:37:48 UTC (rev 29111)
@@ -40440,21 +40440,21 @@
 	NOT-FOR-US: Microsoft Windows
 CVE-2012-5361
 	RESERVED
-	- ffmpeg <unfixed>
+	- ffmpeg 7:2.4.1-1
 	[squeeze] - ffmpeg <end-of-life> (Backports to 0.5.x not useful, too many checks missing)
 	- libav 6:0.8.5-1 (bug #694483)
 	NOTE: http://technet.microsoft.com/en-us/security/msvr/msvr12-017
 	NOTE: upstream needs a proper sample to reproduce the issue
 CVE-2012-5360
 	RESERVED
-	- ffmpeg <unfixed>
+	- ffmpeg 7:2.4.1-1
 	[squeeze] - ffmpeg <end-of-life> (Backports to 0.5.x not useful, too many checks missing)
 	- libav 6:0.8.5-1 (bug #694483)
 	NOTE: http://technet.microsoft.com/en-us/security/msvr/msvr12-017
 	NOTE: upstream needs a proper sample to reproduce the issue
 CVE-2012-5359
 	RESERVED
-	- ffmpeg <unfixed>
+	- ffmpeg 7:2.4.1-1
 	[squeeze] - ffmpeg <end-of-life> (Backports to 0.5.x not useful, too many checks missing)
 	- libav 6:0.8.5-1 (bug #694483)
 	NOTE: http://technet.microsoft.com/en-us/security/msvr/msvr12-017
@@ -47293,12 +47293,12 @@
 CVE-2012-2805
 	RESERVED
 CVE-2012-2804 (Unspecified vulnerability in libavcodec/indeo3.c in FFmpeg before 0.11 ...)
-	- ffmpeg <unfixed>
+	- ffmpeg 7:2.4.1-1
 	- libav 6:0.8.5-1 (bug #688847)
 	[squeeze] - ffmpeg <not-affected> (vulnerable code not present)
 CVE-2012-2803 (Double free vulnerability in the mpeg_decode_frame function in ...)
 	{DSA-2624-1}
-	- ffmpeg <unfixed>
+	- ffmpeg 7:2.4.1-1
 	- libav 6:0.8.5-1 (bug #688847)
 	[squeeze] - ffmpeg 4:0.5.10-1 (bug #688849)
 CVE-2012-2802 (Unspecified vulnerability in the ac3_decode_frame function in ...)
@@ -47307,7 +47307,7 @@
 CVE-2012-2801 (Unspecified vulnerability in libavcodec/avs.c in FFmpeg before 0.11, ...)
 	{DSA-2624-1}
 	- libav 6:0.8.4-1 (bug #688847)
-	- ffmpeg <unfixed>
+	- ffmpeg 7:2.4.1-1
 	[squeeze] - ffmpeg 4:0.5.10-1 (bug #688849)
 CVE-2012-2800 (Unspecified vulnerability in the ff_ivi_process_empty_tile function in ...)
 	[squeeze] - ffmpeg <not-affected> (bug #688849)
@@ -47319,7 +47319,7 @@
 	[squeeze] - ffmpeg <not-affected> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
 CVE-2012-2797 (Unspecified vulnerability in the decode_frame_mp3on4 function in ...)
-	- ffmpeg <unfixed>
+	- ffmpeg 7:2.4.1-1
 	- libav 6:0.8.5-1 (bug #688847)
 	[squeeze] - ffmpeg <not-affected> (vulnerable code not present)
 	NOTE: patch proposed: http://patches.libav.org/patch/32642/
@@ -47352,7 +47352,7 @@
 	{DSA-2624-1}
 	[squeeze] - ffmpeg 4:0.5.10-1 (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	- ffmpeg <removed>
+	- ffmpeg 7:2.4.1-1
 CVE-2012-2787 (Unspecified vulnerability in the decode_frame function in ...)
 	- ffmpeg <not-affected> (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
@@ -47370,7 +47370,7 @@
 	NOTE: duplicate of CVE-2012-2777
 CVE-2012-2783 (Unspecified vulnerability in libavcodec/vp56.c in FFmpeg before 0.11, ...)
 	{DSA-2624-1}
-	- ffmpeg <removed> (bug #688849)
+	- ffmpeg 7:2.4.1-1 (bug #688849)
 	- libav 6:0.8.5-1 (bug #688847)
 	[squeeze] - ffmpeg 4:0.5.10-1 (bug #688849)
 CVE-2012-2782 (Unspecified vulnerability in the decode_slice_header function in ...)
@@ -47380,7 +47380,7 @@
 CVE-2012-2780
 	RESERVED
 CVE-2012-2779 (Unspecified vulnerability in the decode_frame function in ...)
-	- ffmpeg <removed>
+	- ffmpeg 7:2.4.1-1
 	[squeeze] - ffmpeg <not-affected> (Vulnerable code not present, bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
 CVE-2012-2778
@@ -47389,13 +47389,13 @@
 	{DSA-2624-1}
 	[squeeze] - ffmpeg 4:0.5.9-1 (bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
-	- ffmpeg <removed>
+	- ffmpeg 7:2.4.1-1
 CVE-2012-2776 (Unspecified vulnerability in the decode_cell_data function in ...)
-	- ffmpeg <removed>
+	- ffmpeg 7:2.4.1-1
 	[squeeze] - ffmpeg <not-affected> (Vulnerable code not present, bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
 CVE-2012-2775 (Unspecified vulnerability in the read_var_block_data function in ...)
-	- ffmpeg <removed>
+	- ffmpeg 7:2.4.1-1
 	[squeeze] - ffmpeg <not-affected> (Vulnerable code not present, bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
 CVE-2012-2774 (The ff_MPV_frame_start function in libavcodec/mpegvideo.c in FFmpeg ...)
@@ -47406,7 +47406,7 @@
 CVE-2012-2773
 	RESERVED
 CVE-2012-2772 (Unspecified vulnerability in the ff_rv34_decode_frame function in ...)
-	- ffmpeg <removed>
+	- ffmpeg 7:2.4.1-1
 	[squeeze] - ffmpeg <not-affected> (Vulnerable code not present, bug #688849)
 	- libav 6:0.8.4-1 (bug #688847)
 CVE-2012-2771

More information about the Secure-testing-commits mailing list