[Secure-testing-commits] r55614 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2017-09-09 21:44:39 +0000 (Sat, 09 Sep 2017)
New Revision: 55614

Modified:
   data/CVE/list
Log:
ffmpeg postponed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-09-09 17:11:27 UTC (rev 55613)
+++ data/CVE/list	2017-09-09 21:44:39 UTC (rev 55614)
@@ -25,7 +25,9 @@
 	NOTE: https://sourceforge.net/p/libwpd/code/ci/0329a9c57f9b3b0efa0f09a5235dfd90236803a5/
 	NOTE: https://sourceforge.net/p/libwpd/code/ci/f40827b3eae260ce657c67d9fecc855b09dea3c3/
 CVE-2017-14225 (The av_color_primaries_name function in libavutil/pixdesc.c in FFmpeg ...)
-	- ffmpeg <unfixed>
+	- ffmpeg <unfixed> (low)
+	[stretch] - ffmpeg <postponed> (Can be fixed along when more severe issues are being fixed)
+	- libav <undetermined>
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/837cb4325b712ff1aab531bf41668933f61d75d2
 CVE-2017-14224 (A heap-based buffer overflow in WritePCXImage in coders/pcx.c in ...)
 	- imagemagick <unfixed>
@@ -33,10 +35,14 @@
 	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/7f2d6fe34d695d3445e2d50937db5541a1b76bde
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/c6409227c430f114b6425337e64b848535b62e0b
 CVE-2017-14223 (In libavformat/asfdec_f.c in FFmpeg 3.3.3, a DoS in ...)
-	- ffmpeg <unfixed>
+	- ffmpeg <unfixed> (low)
+	[stretch] - ffmpeg <postponed> (Can be fixed along when more severe issues are being fixed)
+	- libav <undetermined>
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/afc9c683ed9db01edb357bc8c19edad4282b3a97
 CVE-2017-14222 (In libavformat/mov.c in FFmpeg 3.3.3, a DoS in read_tfra() due to lack ...)
-	- ffmpeg <unfixed>
+	- ffmpeg <unfixed> (low)
+	[stretch] - ffmpeg <postponed> (Can be fixed along when more severe issues are being fixed)
+	- libav <undetermined>
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/9cb4eb772839c5e1de2855d126bf74ff16d13382
 CVE-2017-14221
 	RESERVED
@@ -146,13 +152,19 @@
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/715
 	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/8598a497e2d1f556a34458cf54b40ba40674734c
 CVE-2017-14171 (In libavformat/nsvdec.c in FFmpeg 3.3.3, a DoS in ...)
-	- ffmpeg <unfixed>
+	- ffmpeg <unfixed> (low)
+	[stretch] - ffmpeg <postponed> (Can be fixed along when more severe issues are being fixed)
+	- libav <undetermined>
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/c24bcb553650b91e9eff15ef6e54ca73de2453b7
 CVE-2017-14170 (In libavformat/mxfdec.c in FFmpeg 3.3.3, a DoS in ...)
-	- ffmpeg <unfixed>
+	- ffmpeg <unfixed> (low)
+	[stretch] - ffmpeg <postponed> (Can be fixed along when more severe issues are being fixed)
+	- libav <undetermined>
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/900f39692ca0337a98a7cf047e4e2611071810c2
 CVE-2017-14169 (In the mxf_read_primer_pack function in libavformat/mxfdec.c in FFmpeg ...)
-	- ffmpeg <unfixed>
+	- ffmpeg <unfixed> (low)
+	[stretch] - ffmpeg <postponed> (Can be fixed along when more severe issues are being fixed)
+	- libav <undetermined>
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/9d00fb9d70ee8c0cc7002b89318c5be00f1bbdad
 CVE-2017-14168
 	RESERVED