[Secure-testing-commits] r46779 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Dec 5 06:34:29 UTC 2016
Author: carnil
Date: 2016-12-05 06:34:29 +0000 (Mon, 05 Dec 2016)
New Revision: 46779
Modified:
data/CVE/list
Log:
Add libav issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-05 06:21:42 UTC (rev 46778)
+++ data/CVE/list 2016-12-05 06:34:29 UTC (rev 46779)
@@ -20,6 +20,38 @@
CVE-2016-9827 [listswf: heap-based buffer overflow in _iprintf (outputtxt.c)]
- ming <unfixed>
NOTE: https://blogs.gentoo.org/ago/2016/12/01/libming-listswf-heap-based-buffer-overflow-in-_iprintf-outputtxt-c
+CVE-2016-9826
+ - libav <removed>
+ NOTE: https://blogs.gentoo.org/ago/2016/12/01/libav-multiple-crashes-from-the-undefined-behavior-sanitizer
+ NOTE: https://github.com/asarubbo/poc/blob/master/00041-libav-leftshift-ituh263dec_c
+CVE-2016-9825
+ - libav <removed>
+ NOTE: https://blogs.gentoo.org/ago/2016/12/01/libav-multiple-crashes-from-the-undefined-behavior-sanitizer
+ NOTE: https://github.com/asarubbo/poc/blob/master/00040-libav-leftshift-utils_c
+CVE-2016-9824
+ - libav <removed>
+ NOTE: https://blogs.gentoo.org/ago/2016/12/01/libav-multiple-crashes-from-the-undefined-behavior-sanitizer
+ NOTE: https://github.com/asarubbo/poc/blob/master/00039-libav-signedintoverflow-swscale_c
+CVE-2016-9823
+ - libav <removed>
+ NOTE: https://blogs.gentoo.org/ago/2016/12/01/libav-multiple-crashes-from-the-undefined-behavior-sanitizer
+ NOTE: https://github.com/asarubbo/poc/blob/master/00038-libav-uint8_t64-outofbounds-mpegvideo
+CVE-2016-9822
+ - libav <removed>
+ NOTE: https://blogs.gentoo.org/ago/2016/12/01/libav-multiple-crashes-from-the-undefined-behavior-sanitizer
+ NOTE: https://github.com/asarubbo/poc/blob/master/00037-libav-signedintoverflow-mpegvideo_parser
+CVE-2016-9821
+ - libav <removed>
+ NOTE: https://blogs.gentoo.org/ago/2016/12/01/libav-multiple-crashes-from-the-undefined-behavior-sanitizer
+ NOTE: https://github.com/asarubbo/poc/blob/master/00037-libav-signedintoverflow-mpegvideo_parser
+CVE-2016-9820
+ - libav <removed>
+ NOTE: https://blogs.gentoo.org/ago/2016/12/01/libav-multiple-crashes-from-the-undefined-behavior-sanitizer
+ NOTE: https://github.com/asarubbo/poc/blob/master/00036-libav-leftshift-mpegvideo
+CVE-2016-9819
+ - libav <removed>
+ NOTE: https://blogs.gentoo.org/ago/2016/12/01/libav-multiple-crashes-from-the-undefined-behavior-sanitizer
+ NOTE: https://github.com/asarubbo/poc/blob/master/00036-libav-leftshift-mpegvideo
CVE-2016-9818
- xen <unfixed>
NOTE: https://xenbits.xen.org/xsa/advisory-201.html
More information about the Secure-testing-commits
mailing list