[Git][security-tracker-team/security-tracker][master] ffmpeg DSA

Sun Jul 29 22:08:37 BST 2018

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b3daf1da by Moritz Muehlenhoff at 2018-07-29T21:06:01Z
ffmpeg DSA

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -876,10 +876,8 @@ CVE-2018-14396
 	RESERVED
 CVE-2018-14395 (libavformat/movenc.c in FFmpeg before 4.0.2 allows attackers to cause a ...)
 	- ffmpeg 7:4.0.2-1
-	[stretch] - ffmpeg <postponed> (Minor issue, wait for next 3.2.x release)
 	- libav <undetermined>
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/fa19fbcf712a6a6cc5a5cfdc3254a97b9bce6582
-	NOTE: Pending for 3.2.12
 CVE-2018-14394 (libavformat/movenc.c in FFmpeg before 4.0.2 allows attackers to cause a ...)
 	- ffmpeg 7:4.0.2-1
 	[stretch] - ffmpeg <postponed> (Minor issue, wait for next 3.2.x release)


=====================================
data/DSA/list
=====================================
--- a/data/DSA/list
+++ b/data/DSA/list
@@ -1,3 +1,6 @@
+[29 Jul 2018] DSA-4258-1 ffmpeg - security update
+	{CVE-2018-14395}
+	[stretch] - ffmpeg 7:3.2.12-1~deb9u1
 [28 Jul 2018] DSA-4257-1 fuse - security update
 	{CVE-2018-10906}
 	[stretch] - fuse 2.9.7-1+deb9u1


=====================================
data/dsa-needed.txt
=====================================
--- a/data/dsa-needed.txt
+++ b/data/dsa-needed.txt
@@ -20,9 +20,6 @@ asterisk
 --
 enigmail
 --
-ffmpeg (jmm)
-  Maintainer is proposing an update to 3.2.12 based version
---
 gitlab
 --
 glusterfs



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b3daf1dadc78d1ebdfd09f372c240ef5e5cbb015

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b3daf1dadc78d1ebdfd09f372c240ef5e5cbb015
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180729/a7171821/attachment-0001.html>
