[Secure-testing-commits] r33889 - data/CVE
Alessandro Ghedini
ghedo at moszumanska.debian.org
Mon Apr 27 16:57:17 UTC 2015
Author: ghedo
Date: 2015-04-27 16:57:17 +0000 (Mon, 27 Apr 2015)
New Revision: 33889
Modified:
data/CVE/list
Log:
Triage libav/ffmpeg issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-04-27 16:13:30 UTC (rev 33888)
+++ data/CVE/list 2015-04-27 16:57:17 UTC (rev 33889)
@@ -29,10 +29,12 @@
NOTE: http://cgit.freedesktop.org/xorg/xserver/commit/?id=dc777c346d5d452a53b13b917c45f6a1bad2f20b
NOTE: https://bugzilla.novell.com/show_bug.cgi?id=928520 (not public yet)
CVE-2015-3417 [FFmpeg Use-After-Free Memory Error in ff_h264_free_tables() Lets Remote Users Deny Service]
- - ffmpeg <undetermined>
- - libav <undetermined>
+ - ffmpeg 7:2.6.1-1
+ [squeeze] - ffmpeg <not-affected> (Vulnerable code not present)
+ - libav <unfixed>
+ [wheezy] - libav <not-affected> (Vulnerable code not present)
+ [squeeze] - libav <not-affected> (Vulnerable code not present)
NOTE: https://github.com/FFmpeg/FFmpeg/commit/e8714f6f93d1a32f4e4655209960afcf4c185214
- TODO: check
CVE-2015-3404 (The Certify module before 6.x-2.3 for Drupal does not properly perform ...)
NOT-FOR-US: Certify module for Drupal
CVE-2015-3403
More information about the Secure-testing-commits
mailing list