[Git][security-tracker-team/security-tracker][master] more ffmpeg triage

Mon Oct 18 22:09:19 BST 2021


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9413c058 by Moritz Muehlenhoff at 2021-10-18T23:08:55+02:00
more ffmpeg triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -81970,6 +81970,8 @@ CVE-2020-22038 (A Denial of Service vulnerability exists in FFmpeg 4.2 due to a
 CVE-2020-22037 (A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ...)
 	- ffmpeg <unfixed> (unimportant)
 	NOTE: https://trac.ffmpeg.org/ticket/8281
+	NOTE: https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=7bba0dd6382e30d646cb406034a66199e071d713
+	NOTE: Pending for 4.4.1
 CVE-2020-22036 (A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 in fil ...)
 	{DLA-2742-1}
 	- ffmpeg 7:4.3-2
@@ -85411,6 +85413,8 @@ CVE-2020-20453 (FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/
 	- ffmpeg <unfixed> (unimportant)
 	NOTE: https://trac.ffmpeg.org/ticket/8003
 	NOTE: Negligible security impact
+	NOTE: https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=a7a7f32c8ad0179a1a85d0a8cff35924e6d90be8
+	NOTE: Pending for 4.4.1
 CVE-2020-20452
 	RESERVED
 CVE-2020-20451 (Denial of Service issue in FFmpeg 4.2 due to resource management error ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9413c05836443701e96bee3536572ce7e62451eb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9413c05836443701e96bee3536572ce7e62451eb
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211018/535116a1/attachment.htm>
