[Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2020-3596{4,5}/ffmpeg

Tue Jan 12 20:47:23 GMT 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bf5e09f8 by Salvatore Bonaccorso at 2021-01-12T21:46:53+01:00
Track fixed version via unstable for CVE-2020-3596{4,5}/ffmpeg

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5436,12 +5436,12 @@ CVE-2021-21495 (MK-AUTH through 19.01 K4.9 allows CSRF for password changes via
 CVE-2021-21494 (MK-AUTH through 19.01 K4.9 allows XSS via the admin/logs_ajax.php tipo ...)
 	NOT-FOR-US: MK-AUTH
 CVE-2020-35965 (decode_frame in libavcodec/exr.c in FFmpeg 4.3.1 has an out-of-bounds  ...)
-	- ffmpeg <unfixed> (bug #979999)
+	- ffmpeg 7:4.3.1-6 (bug #979999)
 	NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26532
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/3e5959b3457f7f1856d997261e6ac672bba49e8b
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/b0a8b40294ea212c1938348ff112ef1b9bf16bb3
 CVE-2020-35964 (track_header in libavformat/vividas.c in FFmpeg 4.3.1 has an out-of-bo ...)
-	- ffmpeg <unfixed> (bug #980000)
+	- ffmpeg 7:4.3.1-6 (bug #980000)
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/27a99e2c7d450fef15594671eef4465c8a166bd7
 	NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26622
 CVE-2020-35963 (flb_gzip_compress in flb_gzip.c in Fluent Bit before 1.6.4 has an out- ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bf5e09f879edbd0c9985ad10761a66e000662f60

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bf5e09f879edbd0c9985ad10761a66e000662f60
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210112/e14e02d6/attachment.html>
