[Secure-testing-commits] r52978 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Jun 28 12:27:51 UTC 2017
Author: carnil
Date: 2017-06-28 12:27:51 +0000 (Wed, 28 Jun 2017)
New Revision: 52978
Modified:
data/CVE/list
Log:
Add CVE-2017-9996/ffmpeg
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-28 11:42:49 UTC (rev 52977)
+++ data/CVE/list 2017-06-28 12:27:51 UTC (rev 52978)
@@ -1,5 +1,8 @@
CVE-2017-9996 (The cdxl_decode_frame function in libavcodec/cdxl.c in FFmpeg 2.8.x ...)
- TODO: check
+ - ffmpeg 7:3.2.5-1
+ - libav <undetermined>
+ NOTE: https://github.com/FFmpeg/FFmpeg/commit/1e42736b95065c69a7481d0cf55247024f54b660
+ NOTE: https://github.com/FFmpeg/FFmpeg/commit/e1b60aad77c27ed5d4dfc11e5e6a05a38c70489d
CVE-2017-9995 (libavcodec/scpr.c in FFmpeg 3.3 before 3.3.1 does not properly validate ...)
TODO: check
CVE-2017-9994 (libavcodec/webp.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x ...)
More information about the Secure-testing-commits
mailing list