[Git][security-tracker-team/security-tracker][master] one ffmpeg issue n/a

Moritz Muehlenhoff (@jmm) jmm at debian.org
Sun Dec 7 19:18:18 GMT 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9679bfda by Moritz Muehlenhoff at 2025-12-07T20:17:45+01:00
one ffmpeg issue n/a

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -18440,10 +18440,9 @@ CVE-2025-60957 (OS Command Injection vulnerability in EndRun Technologies Sonoma
 CVE-2025-60956 (Cross Site Request Forgery (CSRF) vulnerability in EndRun Technologies ...)
 	NOT-FOR-US: EndRun Technologies Sonoma D12 Network Time Server (GPS)
 CVE-2025-59734 (It is possible to cause an use-after-free write in SANM decoding with  ...)
-	- ffmpeg <unfixed>
-	[trixie] - ffmpeg <postponed> (Minor issue, wait until it's fixed in the 7.1 branch)
-	[bookworm] - ffmpeg <postponed> (Minor issue, wait until it's fixed in the 5.1 branch)
+	- ffmpeg <not-affected> (Vulnerable code introduced later)
 	NOTE: https://issuetracker.google.com/issues/440183164
+	NOTE: Introduced in https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/
 	NOTE: Fixed by: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/d311382c38df9c2237b33a9e8e860a5da7d2895d (master)
 	NOTE: Fixed by: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/c41a70b6bb79707e1e3a4b0e31950cd986b9f50e (master)
 	NOTE: Fixed by: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/af310e68db0791b94753a9670c9a9ef0d717e32a (n8.0)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9679bfda5251cc934ee0e2a37282a740fd5b8686

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9679bfda5251cc934ee0e2a37282a740fd5b8686
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251207/7d444ba5/attachment.htm>

More information about the debian-security-tracker-commits mailing list