[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] ffmpeg postponed
Moritz Muehlenhoff
jmm at debian.org
Wed Apr 11 12:18:14 BST 2018
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7d862a4c by Moritz Muehlenhoff at 2018-04-11T13:17:58+02:00
ffmpeg postponed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -60,9 +60,10 @@ CVE-2018-10003
CVE-2018-10002
RESERVED
CVE-2018-10001 (The decode_init function in libavcodec/utvideodec.c in FFmpeg through ...)
- - ffmpeg <unfixed>
+ - ffmpeg <unfixed> (low)
+ [stretch] - ffmpeg <postponed> (Can wait until the next ffmpeg 3.2.x release)
NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commit;h=47b7c68ae54560e2308bdb6be4fb076c73b93081
- TODO: check libav
+ - libav <undetermined>
CVE-2018-10000 (The Video Downloader professional extension before 2018-04-05 for ...)
NOT-FOR-US: The Video Downloader professional extension for Chrome
CVE-2017-18260 (Dolibarr ERP/CRM is affected by multiple SQL injection vulnerabilities ...)
@@ -389,6 +390,7 @@ CVE-2018-9842
CVE-2018-9841 (The export function in libavfilter/vf_signature.c in FFmpeg through ...)
- ffmpeg <unfixed> (low)
[stretch] - ffmpeg <postponed> (Can wait until the next ffmpeg 3.2.x release)
+ - libav <undetermined>
NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commit;h=35eeff30caf34df835206f1c12bcf4b7c2bd6758
CVE-2018-9840 (The Open Whisper Signal app before 2.23.2 for iOS allows physically ...)
NOT-FOR-US: Open Whisper Signal app for iOS
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7d862a4cbfda5a8fb372e3174e6a8d9ef6fe676f
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7d862a4cbfda5a8fb372e3174e6a8d9ef6fe676f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180411/234208a0/attachment.html>
More information about the debian-security-tracker-commits
mailing list