[Git][security-tracker-team/security-tracker][master] Mark some ffmpeg issues as fixed
Sebastian Ramacher
sramacher at debian.org
Sun May 19 16:58:37 BST 2019
Sebastian Ramacher pushed to branch master at Debian Security Tracker / security-tracker
Commits:
65383bd2 by Sebastian Ramacher at 2019-05-19T15:58:18Z
Mark some ffmpeg issues as fixed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1942,11 +1942,11 @@ CVE-2019-11341
CVE-2019-11340 (util/emailutils.py in Matrix Sydent before 1.0.2 mishandles registrati ...)
NOT-FOR-US: Matrix Sydent
CVE-2019-11339 (The studio profile decoder in libavcodec/mpeg4videodec.c in FFmpeg 4.0 ...)
- - ffmpeg <unfixed>
+ - ffmpeg 7:4.1.3-1
NOTE: https://github.com/FFmpeg/FFmpeg/commit/1f686d023b95219db933394a7704ad9aa5f01cbb
NOTE: https://github.com/FFmpeg/FFmpeg/commit/d227ed5d598340e719eff7156b1aa0a4469e9a6a
CVE-2019-11338 (libavcodec/hevcdec.c in FFmpeg 4.1.2 mishandles detection of duplicate ...)
- - ffmpeg <unfixed>
+ - ffmpeg 7:4.1.3-1
NOTE: https://github.com/FFmpeg/FFmpeg/commit/54655623a82632e7624714d7b2a3e039dc5faa7e
CVE-2019-11337
RESERVED
@@ -6618,7 +6618,7 @@ CVE-2019-9723
CVE-2019-9722
RESERVED
CVE-2019-9721 (A denial of service in the subtitle decoder in FFmpeg 4.1 allows attac ...)
- - ffmpeg <unfixed> (bug #926666)
+ - ffmpeg 7:4.1.3-1 (bug #926666)
[stretch] - ffmpeg <not-affected> (Vulnerable code not present)
NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/894995c41e0795c7a44f81adc4838dedc3932e65
CVE-2019-9720
@@ -6626,7 +6626,7 @@ CVE-2019-9720
CVE-2019-9719
RESERVED
CVE-2019-9718 (In FFmpeg 4.1, a denial of service in the subtitle decoder allows atta ...)
- - ffmpeg <unfixed> (low; bug #926666)
+ - ffmpeg 7:4.1.3-1 (low; bug #926666)
[stretch] - ffmpeg <postponed> (Wait until fixed in 3.2.x release)
NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/1f00c97bc3475c477f3c468cf2d924d5761d0982
CVE-2019-9717
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/65383bd2281dfd2a3638e1b47d056578e11ea57b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/65383bd2281dfd2a3638e1b47d056578e11ea57b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190519/e6a96fd1/attachment.html>
More information about the debian-security-tracker-commits
mailing list