[Secure-testing-commits] r52982 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Jun 28 12:36:50 UTC 2017


Author: carnil
Date: 2017-06-28 12:36:50 +0000 (Wed, 28 Jun 2017)
New Revision: 52982

Modified:
   data/CVE/list
Log:
Add CVE-2017-9992/ffmpeg

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-28 12:33:07 UTC (rev 52981)
+++ data/CVE/list	2017-06-28 12:36:50 UTC (rev 52982)
@@ -18,7 +18,9 @@
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/189ff4219644532bdfa7bab28dfedaee4d6d4021
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/a5d849b149ca67ced2d271dc84db0bc95a548abb
 CVE-2017-9992 (Heap-based buffer overflow in the decode_dds1 function in ...)
-	TODO: check
+	- ffmpeg 7:3.2.5-1
+	- libav <undetermined>
+	NOTE: https://github.com/FFmpeg/FFmpeg/commit/f52fbf4f3ed02a7d872d8a102006f29b4421f360
 CVE-2017-9991 (Heap-based buffer overflow in the xwd_decode_frame function in ...)
 	TODO: check
 CVE-2017-9990 (Stack-based buffer overflow in the color_string_to_rgba function in ...)




More information about the Secure-testing-commits mailing list