[Git][security-tracker-team/security-tracker][master] ffmpeg triage
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri Aug 15 10:19:17 BST 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
71027e9e by Moritz Muehlenhoff at 2025-08-15T11:18:06+02:00
ffmpeg triage
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -145145,10 +145145,10 @@ CVE-2023-50008 (FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using
CVE-2023-50007 (FFmpeg v.n6.1-3-g466799d4f5 allows an attacker to trigger use of a par ...)
[experimental] - ffmpeg 7:7.0-1
- ffmpeg 7:7.0.1-3
- [bookworm] - ffmpeg <postponed> (Pick up when fixed in 5.1.x)
[bullseye] - ffmpeg <not-affected> (Vulnerable code not present)
[buster] - ffmpeg <not-affected> (Vulnerable code not present)
NOTE: https://github.com/FFmpeg/FFmpeg/commit/b1942734c7cbcdc9034034373abcc9ecb9644c47 (n7.0)
+ NOTE: https://github.com/FFmpeg/FFmpeg/commit/3a8f94cf7b29ed4b8531306f11a6bb94fbbaf936 (n5.1.7)
NOTE: https://trac.ffmpeg.org/ticket/10700
CVE-2023-49963 (DYMO LabelWriter Print Server through 2.366 contains a backdoor hard-c ...)
NOT-FOR-US: DYMO LabelWriter Print Server
@@ -145156,9 +145156,9 @@ CVE-2023-49502 (Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 all
{DLA-3928-1}
[experimental] - ffmpeg 7:7.0-1
- ffmpeg 7:7.0.1-3
- [bookworm] - ffmpeg <postponed> (Pick up when fixed in 5.1.x)
[buster] - ffmpeg <postponed> (Pick up when fixed in most related branch)
NOTE: https://github.com/FFmpeg/FFmpeg/commit/737ede405b11a37fdd61d19cf25df296a0cb0b75 (n7.0)
+ NOTE: https://github.com/FFmpeg/FFmpeg/commit/8e6c82cefb45372dee069236f08d272117d81421 (n5.1.7)
NOTE: https://trac.ffmpeg.org/ticket/10688
CVE-2023-49501 (Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a ...)
[experimental] - ffmpeg 7:7.0-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/71027e9e179032d69b514a25b087316bbb86a7b6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/71027e9e179032d69b514a25b087316bbb86a7b6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250815/007266fe/attachment.htm>
More information about the debian-security-tracker-commits
mailing list