[Secure-testing-commits] r52984 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Jun 28 12:37:10 UTC 2017


Author: carnil
Date: 2017-06-28 12:37:10 +0000 (Wed, 28 Jun 2017)
New Revision: 52984

Modified:
   data/CVE/list
Log:
Add CVE-2017-9990/ffmpeg

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-28 12:37:00 UTC (rev 52983)
+++ data/CVE/list	2017-06-28 12:37:10 UTC (rev 52984)
@@ -26,7 +26,9 @@
 	- libav <undetermined>
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/441026fcb13ac23aa10edc312bdacb6445a0ad06
 CVE-2017-9990 (Stack-based buffer overflow in the color_string_to_rgba function in ...)
-	TODO: check
+	- ffmpeg <undetermined>
+	- libav <undetermined>
+	NOTE: https://github.com/FFmpeg/FFmpeg/commit/cb243972b121b1ae6b60a78ff55a0506c69f3879
 CVE-2017-9989 (util/outputtxt.c in libming 0.4.8 mishandles memory allocation. A ...)
 	TODO: check
 CVE-2017-9988 (The readEncUInt30 function in util/read.c in libming 0.4.8 mishandles ...)




More information about the Secure-testing-commits mailing list