[Git][security-tracker-team/security-tracker][master] CVE-2023-660{2,4,5}/ffmpeg are already fixed in trixie
Adrian Bunk (@bunk)
bunk at debian.org
Mon Jul 14 12:13:35 BST 2025
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ab8c2044 by Adrian Bunk at 2025-07-14T14:12:47+03:00
CVE-2023-660{2,4,5}/ffmpeg are already fixed in trixie
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -62237,17 +62237,19 @@ CVE-2024-12996
CVE-2024-12970 (Improper Neutralization of Special Elements used in an OS Command ('OS ...)
NOT-FOR-US: TUBITAK BILGEM Pardus OS My Computer
CVE-2023-6605 (A flaw was found in FFmpeg's DASH playlist support. This vulnerability ...)
- - ffmpeg <unfixed>
- [trixie] - ffmpeg <postponed> (Minor issue, wait until it's fixed in the 7.1 branch)
+ - ffmpeg 7:7.1.1-1
[bookworm] - ffmpeg <postponed> (Minor issue, wait until it's fixed in the 5.1 branch)
[bullseye] - ffmpeg <postponed> (Minor issue, wait until it's fixed upstream)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2334336
+ NOTE: Fixed by: https://github.com/FFmpeg/FFmpeg/commit/4c96d6bf75357ab13808efc9f08c1b41b1bf5bdf (master)
+ NOTE: Fixed by: https://github.com/FFmpeg/FFmpeg/commit/c3c7ecfe48d464a0b06564f2e92504b1d9c91d69 (n7.1.1)
CVE-2023-6604 (A flaw was found in FFmpeg. This vulnerability allows unexpected addit ...)
- - ffmpeg <unfixed>
- [trixie] - ffmpeg <postponed> (Minor issue, wait until it's fixed in the 7.1 branch)
+ - ffmpeg 7:7.1.1-1
[bookworm] - ffmpeg <postponed> (Minor issue, wait until it's fixed in the 5.1 branch)
[bullseye] - ffmpeg <postponed> (Minor issue, wait until it's fixed upstream)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2334337
+ NOTE: Fixed by: https://github.com/FFmpeg/FFmpeg/commit/91d96dc8ddaebe0b6cb393f672085e6bfaf15a31 (master)
+ NOTE: Fixed by: https://github.com/FFmpeg/FFmpeg/commit/b753bac08f6881b2d3dea8f1ab84c81550f35897 (n7.1.1)
CVE-2023-6601 (A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows by ...)
- ffmpeg <unfixed>
[trixie] - ffmpeg <postponed> (Minor issue, wait until it's fixed in the 7.1 branch)
@@ -63463,10 +63465,12 @@ CVE-2023-6603 (A flaw was found in FFmpeg's HLS playlist parsing. This vulnerabi
[bullseye] - ffmpeg <postponed> (Minor issue, wait until it's fixed upstream)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2334335
CVE-2023-6602 (A flaw was found in FFmpeg's TTY Demuxer. This vulnerability allows po ...)
- - ffmpeg <unfixed>
+ - ffmpeg 7:7.1.1-1
[bookworm] - ffmpeg <postponed> (Minor issue, wait until it's fixed in the 5.1 branch)
[bullseye] - ffmpeg <postponed> (Minor issue, wait until it's fixed upstream)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2334338
+ NOTE: Fixed by: https://github.com/FFmpeg/FFmpeg/commit/91d96dc8ddaebe0b6cb393f672085e6bfaf15a31 (master)
+ NOTE: Fixed by: https://github.com/FFmpeg/FFmpeg/commit/b753bac08f6881b2d3dea8f1ab84c81550f35897 (n7.1.1)
CVE-2024-45497 (A flaw was found in the OpenShift build process, where the docker-buil ...)
NOT-FOR-US: OpenShift
CVE-2024-13058 (An issue exists in SoftIron HyperCloud where authenticated, but non-a ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab8c2044b1d17503ff0a8b0906cf21d74e152cb1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab8c2044b1d17503ff0a8b0906cf21d74e152cb1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250714/29ec692e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list