[Git][security-tracker-team/security-tracker][master] 3 commits: LTS: Mark CVE-2020-20898 as not-affected for stretch

Fri Nov 12 20:56:36 GMT 2021


Anton Gladky pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a5e8c57d by Anton Gladky at 2021-11-12T21:56:11+01:00
LTS: Mark CVE-2020-20898 as not-affected for stretch

- - - - -
e92ae2a4 by Anton Gladky at 2021-11-12T21:56:12+01:00
LTS: Mark CVE-2020-20450 as not-affected for stretch

- - - - -
efc96d20 by Anton Gladky at 2021-11-12T21:56:13+01:00
LTS: Mark CVE-2020-20448 as not-affected for stretch

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -88088,6 +88088,7 @@ CVE-2020-20899
 	REJECTED
 CVE-2020-20898 (Integer Overflow vulnerability in function filter16_prewitt in libavfi ...)
 	- ffmpeg 7:4.3-2 (unimportant)
+	[stretch] - ffmpeg <not-affected> (vulnerable code is not present)
 	NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/99f8d32129dd233d4eb2efa44678a0bc44869f23 (4.3)
 	NOTE: https://trac.ffmpeg.org/ticket/8263
 CVE-2020-20897
@@ -89016,6 +89017,7 @@ CVE-2020-20450 (FFmpeg 4.2 is affected by null pointer dereference passed as arg
 	{DSA-4998-1}
 	[experimental] - ffmpeg 7:4.4-1
 	- ffmpeg 7:4.4-5 (unimportant)
+	[stretch] - ffmpeg <not-affected> (vulnerable code is not present)
 	NOTE: https://trac.ffmpeg.org/ticket/7993
 	NOTE: https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=5400e4a50c61e53e1bc50b3e77201649bbe9c510
 	NOTE: https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=3865b1952e5cf993b016d83ba78fe1deb63bbfad (4.3)
@@ -89025,6 +89027,7 @@ CVE-2020-20449
 CVE-2020-20448 (FFmpeg 4.1.3 is affected by a Divide By Zero issue via libavcodec/rate ...)
 	{DSA-4722-1}
 	- ffmpeg 7:4.3-2 (unimportant)
+	[stretch] - ffmpeg <not-affected> (vulnerable code is not present)
 	NOTE: https://trac.ffmpeg.org/ticket/7990
 	NOTE: Negligible security impact
 	NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=8802e329c8317ca5ceb929df48a23eb0f9e852b2



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/0479c970fc5fa15c101a7415d0c2d95dcd0621ee...efc96d20e5f83af8351acea4259a93664258fc31

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/0479c970fc5fa15c101a7415d0c2d95dcd0621ee...efc96d20e5f83af8351acea4259a93664258fc31
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211112/9e7ed569/attachment.htm>
