[Secure-testing-commits] r57279 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Nov 3 11:54:20 UTC 2017
Author: jmm
Date: 2017-11-03 11:54:20 +0000 (Fri, 03 Nov 2017)
New Revision: 57279
Modified:
data/CVE/list
Log:
ffmpeg postponed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-03 11:50:32 UTC (rev 57278)
+++ data/CVE/list 2017-11-03 11:54:20 UTC (rev 57279)
@@ -2283,9 +2283,9 @@
CVE-2017-15672
RESERVED
- ffmpeg <unfixed>
+ [stretch] - ffmpeg <postponed> (Wait until next round of security releases)
- libav <undetermined>
NOTE: Fixed by: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=c20f4fcb74da2d0432c7b54499bb98f48236b904
- TODO: check
CVE-2017-15671 (The glob function in glob.c in the GNU C Library (aka glibc or libc6) ...)
- glibc <unfixed> (low; bug #879500)
[stretch] - glibc <no-dsa> (Minor issue)
@@ -3506,6 +3506,7 @@
NOTE: https://github.com/Cacti/cacti/commit/4f87256e63859117f81d2a2bd40c9c730e39b65d
CVE-2017-15186 (Double free vulnerability in FFmpeg 3.3.4 and earlier allows remote ...)
- ffmpeg <unfixed>
+ [stretch] - ffmpeg <postponed> (Wait until next round of security releases)
- libav <undetermined>
NOTE: http://www.openwall.com/lists/oss-security/2017/10/20/4
NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/df62b70de8aaa285168e72fe8f6e740843ca91fa
More information about the Secure-testing-commits
mailing list