[Git][security-tracker-team/security-tracker][master] Cleanup several ffmpeg CVEs (duplicates of existing ones)

Mon Oct 4 21:18:32 BST 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e1a5773a by Salvatore Bonaccorso at 2021-10-04T22:18:00+02:00
Cleanup several ffmpeg CVEs (duplicates of existing ones)

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -81285,23 +81285,10 @@ CVE-2020-20902 (A CWE-125: Out-of-bounds read vulnerability exists in long_term_
 	NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=a0c91fb0f0641f9f35f650281a176657907097cf (4.1.5)
 CVE-2020-20901
 	REJECTED
-	- ffmpeg 7:4.3-2
-	[buster] - ffmpeg <postponed> (Wait for 4.1.8)
-	NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commit;h=07050d7bdc32d82e53ee5bb727f5882323d00dba (4.3)
-	NOTE: https://trac.ffmpeg.org/ticket/8264
 CVE-2020-20900
 	REJECTED
-	- ffmpeg 7:4.3-2
-	[buster] - ffmpeg <postponed> (Wait for 4.1.8)
-	NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/de598f82f8c3f8000e1948548e8088148e2b1f44 (4.3)
-	NOTE: https://trac.ffmpeg.org/ticket/8275
 CVE-2020-20899
 	REJECTED
-	- ffmpeg 7:4.3-2
-	[buster] - ffmpeg <postponed> (Wait for 4.1.8)
-	NOTE: http://git.videolan.org/?p=ffmpeg.git;a=commit;h=8c3166e1c302c3ba80d9742ae46161c0fa8e2606 (4.3)
-	NOTE: https://trac.ffmpeg.org/ticket/8261
-	NOTE: CVE-2020-22036 and CVE-2020-20899 are duplicates, reported to MITRE
 CVE-2020-20898 (Integer Overflow vulnerability in function filter16_prewitt in libavfi ...)
 	- ffmpeg 7:4.3-2
 	[buster] - ffmpeg <ignored> (Minor issue)
@@ -81309,10 +81296,6 @@ CVE-2020-20898 (Integer Overflow vulnerability in function filter16_prewitt in l
 	NOTE: https://trac.ffmpeg.org/ticket/8263
 CVE-2020-20897
 	REJECTED
-	- ffmpeg 7:4.3-2
-	[buster] - ffmpeg <postponed> (Wait for 4.1.8)
-	NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/0749082eb93ea02fa4b770da86597450cec84054 (4.3)
-	NOTE: https://trac.ffmpeg.org/ticket/8262
 CVE-2020-20896 (An issue was discovered in function latm_write_packet in libavformat/l ...)
 	- ffmpeg 7:4.3-2
 	[buster] - ffmpeg <postponed> (Wait for 4.1.8)
@@ -81320,22 +81303,10 @@ CVE-2020-20896 (An issue was discovered in function latm_write_packet in libavfo
 	NOTE: https://trac.ffmpeg.org/ticket/8273
 CVE-2020-20895
 	REJECTED
-	- ffmpeg 7:4.3-2
-	[buster] - ffmpeg <postponed> (Wait for 4.1.8)
-	NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/f069a9c2a65bc20c3462127623127df6dfd06c5b (4.3)
-	NOTE: https://trac.ffmpeg.org/ticket/8274
 CVE-2020-20894
 	REJECTED
-	- ffmpeg 7:4.3-2
-	[buster] - ffmpeg <postponed> (Wait for 4.1.8)
-	NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/ccf4ab8c9aca0aee66bcc2914031a9c97ac0eeb8 (4.3)
-	NOTE: https://trac.ffmpeg.org/ticket/8260
 CVE-2020-20893
 	REJECTED
-	- ffmpeg 7:4.3-2
-	[buster] - ffmpeg <postponed> (Wait for 4.1.8)
-	NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/e1b89c76f66343d1b495165664647317c66764bb (4.3)
-	NOTE: https://trac.ffmpeg.org/ticket/8276
 CVE-2020-20892 (An issue was discovered in function filter_frame in libavfilter/vf_len ...)
 	- ffmpeg 7:4.3-2
 	[buster] - ffmpeg <ignored> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e1a5773a6056084968b40b8c9f1cf44f94dbd9be

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e1a5773a6056084968b40b8c9f1cf44f94dbd9be
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211004/51a1874e/attachment.htm>
