[Secure-testing-commits] r48859 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sun Feb 12 17:32:00 UTC 2017
Author: jmm
Date: 2017-02-12 17:32:00 +0000 (Sun, 12 Feb 2017)
New Revision: 48859
Modified:
data/CVE/list
Log:
ffmpeg fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-02-12 17:30:18 UTC (rev 48858)
+++ data/CVE/list 2017-02-12 17:32:00 UTC (rev 48859)
@@ -3021,13 +3021,13 @@
{DSA-3776-1}
- chromium-browser 44.0.2403.157-1
[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
- - ffmpeg <unfixed>
+ - ffmpeg 7:3.2.4-1
CVE-2017-5024
RESERVED
{DSA-3776-1}
- chromium-browser 44.0.2403.157-1
[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
- - ffmpeg <unfixed>
+ - ffmpeg 7:3.2.4-1
CVE-2017-5023
RESERVED
{DSA-3776-1}
@@ -14516,7 +14516,7 @@
CVE-2016-9562 (SAP NetWeaver AS JAVA 7.4 allows remote attackers to cause a Denial of ...)
NOT-FOR-US: SAP
CVE-2016-9561 (The che_configure function in libavcodec/aacdec_template.c in FFmpeg ...)
- - ffmpeg <unfixed> (unimportant)
+ - ffmpeg 7:3.2.4-1 (unimportant)
NOTE: http://www.openwall.com/lists/oss-security/2016/12/08/1
NOTE: non-issue, legitimate media file. If a server application uses libav* on untrusted media
NOTE: files, it needs to set resource limits
More information about the Secure-testing-commits
mailing list