[Git][security-tracker-team/security-tracker][master] new ffmpeg issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri Aug 9 10:05:46 BST 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3fe4681e by Moritz Muehlenhoff at 2024-08-09T11:05:08+02:00
new ffmpeg issue
- - - - -
2 changed files:
- data/CVE/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -13,7 +13,10 @@ CVE-2024-7512 (Concrete CMS versions 9.0.0 through 9.3.2 are affected by a store
CVE-2024-7399 (Improper limitation of a pathname to a restricted directory vulnerabil ...)
NOT-FOR-US: Samsung
CVE-2024-7272 (A vulnerability, which was classified as critical, was found in FFmpeg ...)
- TODO: check
+ - ffmpeg 7:6.0-4
+ NOTE: https://trac.ffmpeg.org/ticket/9908
+ NOTE: https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=9903ba28c28ab18dc7b7b6fb8571cc8b5caae1a6 (n6.0)
+ NOTE: https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=a937b3c58babae893fb46b286a4792cd24a01d3d (n5.1.6)
CVE-2024-6158 (The Category Posts Widget WordPress plugin before 4.9.17, term-and-cat ...)
NOT-FOR-US: WordPress plugin
CVE-2024-6136 (The wp-cart-for-digital-products WordPress plugin before 8.5.6 does no ...)
=====================================
data/dsa-needed.txt
=====================================
@@ -26,6 +26,9 @@ cinder
dnsmasq
Lee Garrett showed interest to prepare an update for review
--
+ffmpeg/stable
+ update to 5.1.6
+--
frr
Tobias Frost (tobi) proposed to work on preparing an update, but discussion
with Debian maintainer for status on bullseye + updates
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3fe4681e35950ba7126c327dff21e926f864ba1b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3fe4681e35950ba7126c327dff21e926f864ba1b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240809/ac522fd0/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list