[Secure-testing-commits] r31703 - data/CVE
Raphaël Hertzog
hertzog at moszumanska.debian.org
Mon Jan 26 21:06:41 UTC 2015
Author: hertzog
Date: 2015-01-26 21:06:41 +0000 (Mon, 26 Jan 2015)
New Revision: 31703
Modified:
data/CVE/list
Log:
Mark ffmpeg as end-of-life on squeeze for CVE-2014-9597 and CVE-2014-9598
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-26 20:21:52 UTC (rev 31702)
+++ data/CVE/list 2015-01-26 21:06:41 UTC (rev 31703)
@@ -713,12 +713,14 @@
TODO: check
CVE-2014-9598 (The picture_Release function in misc/picture.c in VideoLAN VLC media ...)
- ffmpeg <unfixed>
+ [squeeze] - ffmpeg <end-of-life>
- libav <unfixed>
TODO: check, this was originally reported for VLC; but upstream states that it is in libavcodec
NOTE: https://trac.videolan.org/vlc/ticket/13390
NOTE: http://seclists.org/fulldisclosure/2015/Jan/72
CVE-2014-9597 (The picture_pool_Delete function in misc/picture_pool.c in VideoLAN ...)
- ffmpeg <unfixed>
+ [squeeze] - ffmpeg <end-of-life>
- libav <unfixed>
TODO: check, this was originally reported for VLC; but upstream states that it is in libavcodec
NOTE: https://trac.videolan.org/vlc/ticket/13389
More information about the Secure-testing-commits
mailing list