[Secure-testing-commits] r55382 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Sat Sep 2 08:28:51 UTC 2017 

Author: jmm
Date: 2017-09-02 08:28:51 +0000 (Sat, 02 Sep 2017)
New Revision: 55382

Modified:
   data/CVE/list
Log:
mark remaining ffmpeg issues as postponed
add libav as undetermined


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-09-02 06:27:06 UTC (rev 55381)
+++ data/CVE/list	2017-09-02 08:28:51 UTC (rev 55382)
@@ -146,22 +146,32 @@
 CVE-2017-14059 (In FFmpeg 3.3.3, a DoS in cine_read_header() due to lack of an EOF ...)
 	- ffmpeg <unfixed> (low)
 	[stretch] - ffmpeg <postponed> (Can be fixed along when more severe issues are being fixed)
+	- libav <undetermined>
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/7e80b63ecd259d69d383623e75b318bf2bd491f6
 CVE-2017-14058 (In FFmpeg 3.3.3, the read_data function in libavformat/hls.c does not ...)
 	- ffmpeg <unfixed> (low)
 	[stretch] - ffmpeg <postponed> (Can be fixed along when more severe issues are being fixed)
+	- libav <undetermined>
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/7ec414892ddcad88313848494b6fc5f437c9ca4a
 CVE-2017-14057 (In FFmpeg 3.3.3, a DoS in asf_read_marker() due to lack of an EOF (End ...)
 	- ffmpeg <unfixed> (low)
+	[stretch] - ffmpeg <postponed> (Can be fixed along when more severe issues are being fixed)
+	- libav <undetermined>
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/7f9ec5593e04827249e7aeb466da06a98a0d7329
 CVE-2017-14056 (In libavformat/rl2.c in FFmpeg 3.3.3, a DoS in rl2_read_header() due to ...)
 	- ffmpeg <unfixed> (low)
+	[stretch] - ffmpeg <postponed> (Can be fixed along when more severe issues are being fixed)
+	- libav <undetermined>
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/96f24d1bee7fe7bac08e2b7c74db1a046c9dc0de
 CVE-2017-14055 (In libavformat/mvdec.c in FFmpeg 3.3.3, a DoS in mv_read_header() due ...)
 	- ffmpeg <unfixed> (low)
+	[stretch] - ffmpeg <postponed> (Can be fixed along when more severe issues are being fixed)
+	- libav <undetermined>
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/4f05e2e2dc1a89f38cd9f0960a6561083d714f1e
 CVE-2017-14054 (In libavformat/rmdec.c in FFmpeg 3.3.3, a DoS in ivr_read_header() due ...)
 	- ffmpeg <unfixed> (low)
+	[stretch] - ffmpeg <postponed> (Can be fixed along when more severe issues are being fixed)
+	- libav <undetermined>
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/124eb202e70678539544f6268efc98131f19fa49
 CVE-2017-14053
 	RESERVED

More information about the Secure-testing-commits mailing list