[Secure-testing-commits] r52978 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Jun 28 12:27:51 UTC 2017


Author: carnil
Date: 2017-06-28 12:27:51 +0000 (Wed, 28 Jun 2017)
New Revision: 52978

Modified:
   data/CVE/list
Log:
Add CVE-2017-9996/ffmpeg

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-28 11:42:49 UTC (rev 52977)
+++ data/CVE/list	2017-06-28 12:27:51 UTC (rev 52978)
@@ -1,5 +1,8 @@
 CVE-2017-9996 (The cdxl_decode_frame function in libavcodec/cdxl.c in FFmpeg 2.8.x ...)
-	TODO: check
+	- ffmpeg 7:3.2.5-1
+	- libav <undetermined>
+	NOTE: https://github.com/FFmpeg/FFmpeg/commit/1e42736b95065c69a7481d0cf55247024f54b660
+	NOTE: https://github.com/FFmpeg/FFmpeg/commit/e1b60aad77c27ed5d4dfc11e5e6a05a38c70489d
 CVE-2017-9995 (libavcodec/scpr.c in FFmpeg 3.3 before 3.3.1 does not properly validate ...)
 	TODO: check
 CVE-2017-9994 (libavcodec/webp.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x ...)




More information about the Secure-testing-commits mailing list