[Secure-testing-commits] r37116 - data/CVE

Ben Hutchings benh at moszumanska.debian.org
Thu Oct 15 00:07:54 UTC 2015


Author: benh
Date: 2015-10-15 00:07:53 +0000 (Thu, 15 Oct 2015)
New Revision: 37116

Modified:
   data/CVE/list
Log:
Add references for CVE-2015-6761 and note about likely impact in squeeze

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-10-14 21:10:11 UTC (rev 37115)
+++ data/CVE/list	2015-10-15 00:07:53 UTC (rev 37116)
@@ -2522,7 +2522,10 @@
 	- chromium-browser 44.0.2403.157-1
 	[wheezy] - chromium-browser <end-of-life>
 	[squeeze] - chromium-browser <end-of-life>
+	NOTE: https://code.google.com/p/chromium/issues/detail?id=447860
+	NOTE: https://code.google.com/p/chromium/issues/detail?id=532967
 	NOTE: Starting with 44.0.2403.157-1 chromium uses the ffmpeg system copy
+	NOTE: It looks like this relates to multithreaded decoding of VPx codecs, which is not implemented in the squeeze version. But I'm not sure as the second bug report is still private.
 CVE-2015-6760
 	RESERVED
 	- chromium-browser <unfixed>




More information about the Secure-testing-commits mailing list