[Git][security-tracker-team/security-tracker][master] new ffmpeg issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Feb 26 16:37:41 GMT 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1fc4100d by Moritz Muehlenhoff at 2025-02-26T17:37:17+01:00
new ffmpeg issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4202,7 +4202,10 @@ CVE-2025-22920 (A heap buffer overflow vulnerability in FFmpeg before commit 4bf
NOTE: Introduced with: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/545de54e3e0ce5ad1285aa5e111e6657ad803f79
NOTE: Fixed by: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/4bf784c0e5615c3f934e677d5de093a8be7da7ae
CVE-2025-22919 (A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 ...)
- TODO: check
+ - ffmpeg <unfixed>
+ [bookworm] - ffmpeg <postponed> (Minor issue, wait until it's fixed in the 5.1 branch)
+ NOTE: https://trac.ffmpeg.org/ticket/11385
+ NOTE: Fixed by: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/1446e37d3d032e1452844778b3e6ba2c20f0c322
CVE-2025-22888 (Movable Type contains a stored cross-site scripting vulnerability in t ...)
- movabletype-opensource <removed>
CVE-2025-22622 (Age Verification for your checkout page. Verify your customer's identi ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1fc4100d39d0d7f42a5537007d2cb36b00541f4a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1fc4100d39d0d7f42a5537007d2cb36b00541f4a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250226/24376357/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list