[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] libav ignored

Thu Feb 8 18:24:00 UTC 2018

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d436b3ab by Moritz Muehlenhoff at 2018-02-08T19:23:38+01:00
libav ignored
NFU

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -623,7 +623,7 @@ CVE-2018-6621 (The decode_frame function in libavcodec/utvideodec.c in FFmpeg th
 	NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/118e1b0b3370dd1c0da442901b486689efd1654b
 	TODO: check
 CVE-2018-6620 (Odoo does not require authentication to be configured for a Backup ...)
-	TODO: check
+	NOT-FOR-US: Odoo
 CVE-2018-6619
 	RESERVED
 CVE-2018-6618
@@ -3255,8 +3255,8 @@ CVE-2018-5685 (In GraphicsMagick 1.3.27, there is an infinite loop and applicati
 	NOTE: expanded to 64-bit architectures with upstream commit be5e89e6032d
 CVE-2018-5684 (In Libav through 12.2, there is an invalid memcpy call in the ...)
 	- libav <removed>
+	[jessie] - libav <ignored> (Minor issue)
 	NOTE: https://bugzilla.libav.org/show_bug.cgi?id=1110
-	TODO: check
 CVE-2018-5683 (The vga_draw_text function in Qemu allows local OS guest privileged ...)
 	- qemu <unfixed> (bug #887392)
 	[stretch] - qemu <postponed> (Minor issue, can be fixed along in future DSA)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d436b3ab9a86cc58b36623c0b72cdbb0c2b59552

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d436b3ab9a86cc58b36623c0b72cdbb0c2b59552
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180208/7e21968a/attachment.html>
