[Git][security-tracker-team/security-tracker][master] [libav LTS triaging] Mark CVE-2016-98{19,20} as unimportant again. Thanks to jmm…

Mike Gabriel sunweaver at debian.org
Thu Dec 6 10:19:42 GMT 2018 

Mike Gabriel pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3f4981fa by Mike Gabriel at 2018-12-06T10:19:22Z
[libav LTS triaging] Mark CVE-2016-98{19,20} as unimportant again. Thanks to jmm for pointing that out.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -101278,7 +101278,7 @@ CVE-2016-9821 (Integer overflow in libavcodec/mpegvideo_parser.c in libav 11.8 a
 	NOTE: https://git.libav.org/?p=libav.git;a=commit;h=15e1af0006354d6bbf0e433c5d1e8ef13c93d6d0 (pre 11.9)
 CVE-2016-9820 (libavcodec/mpegvideo_motion.c in libav 11.8 allows remote attackers to ...)
 	{DLA-791-1}
-	- libav <removed>
+	- libav <removed> (unimportant)
 	[jessie] - libav <not-affected> (The fixing patches are included in the upstream version)
 	NOTE: https://blogs.gentoo.org/ago/2016/12/01/libav-multiple-crashes-from-the-undefined-behavior-sanitizer
 	NOTE: https://github.com/asarubbo/poc/blob/master/00036-libav-leftshift-mpegvideo
@@ -101287,7 +101287,7 @@ CVE-2016-9820 (libavcodec/mpegvideo_motion.c in libav 11.8 allows remote attacke
 	NOTE: https://git.libav.org/?p=libav.git;a=commit;h=f106f74206e69e9056130da8bddffc39f3878ac3 (pre 11.9)
 CVE-2016-9819 (libavcodec/mpegvideo.c in libav 11.8 allows remote attackers to cause ...)
 	{DLA-791-1}
-	- libav <removed>
+	- libav <removed> (unimportant)
 	[jessie] - libav <not-affected> (The fixing patches are included in the upstream version)
 	NOTE: https://blogs.gentoo.org/ago/2016/12/01/libav-multiple-crashes-from-the-undefined-behavior-sanitizer
 	NOTE: https://github.com/asarubbo/poc/blob/master/00036-libav-leftshift-mpegvideo



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3f4981fa334d21aed92c6bea355d80c878e3c1fb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3f4981fa334d21aed92c6bea355d80c878e3c1fb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181206/4f5de3b5/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list