[Secure-testing-commits] r52979 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Jun 28 12:30:11 UTC 2017
Author: carnil
Date: 2017-06-28 12:30:11 +0000 (Wed, 28 Jun 2017)
New Revision: 52979
Modified:
data/CVE/list
Log:
Add CVE-2017-9995/ffmpeg
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-28 12:27:51 UTC (rev 52978)
+++ data/CVE/list 2017-06-28 12:30:11 UTC (rev 52979)
@@ -4,7 +4,10 @@
NOTE: https://github.com/FFmpeg/FFmpeg/commit/1e42736b95065c69a7481d0cf55247024f54b660
NOTE: https://github.com/FFmpeg/FFmpeg/commit/e1b60aad77c27ed5d4dfc11e5e6a05a38c70489d
CVE-2017-9995 (libavcodec/scpr.c in FFmpeg 3.3 before 3.3.1 does not properly validate ...)
- TODO: check
+ - ffmpeg <undetermined>
+ - libav <undetermined>
+ NOTE: https://github.com/FFmpeg/FFmpeg/commit/2171dfae8c065878a2e130390eb78cf2947a5b69
+ NOTE: https://github.com/FFmpeg/FFmpeg/commit/7ac5067146613997bb38442cb022d7f41321a706
CVE-2017-9994 (libavcodec/webp.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x ...)
TODO: check
CVE-2017-9993 (FFmpeg before 2.8.12, 3.0.x and 3.1.x before 3.1.9, 3.2.x before 3.2.6, ...)
More information about the Secure-testing-commits
mailing list