[Git][security-tracker-team/security-tracker][master] Add commit references from n7.1.1 for three ffmpeg issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Mar 9 08:58:10 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f287753d by Salvatore Bonaccorso at 2025-03-09T09:57:15+01:00
Add commit references from n7.1.1 for three ffmpeg issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2146,6 +2146,7 @@ CVE-2025-1816 (A vulnerability classified as problematic has been found in FFmpe
[bookworm] - ffmpeg <not-affected> (Vulnerable code not present)
[bullseye] - ffmpeg <not-affected> (Vulnerable code not present)
NOTE: Fixed by: https://git.ffmpeg.org/gitweb/ffmpeg.git/commitdiff/0526535cd58444dd264e810b2f3348b4d96cff3b
+ NOTE: Fixed by: https://git.ffmpeg.org/gitweb/ffmpeg.git/commitdiff/b06845c6727a7c4391a7d5f607ae078aa0073c43 (n7.1.1)
NOTE: https://trac.ffmpeg.org/ticket/11475
CVE-2025-1815 (A vulnerability, which was classified as critical, was found in pbrong ...)
NOT-FOR-US: pbrong hrms
@@ -7794,6 +7795,7 @@ CVE-2025-22919 (A reachable assertion in FFmpeg git-master commit N-113007-g8d24
[bookworm] - ffmpeg <postponed> (Minor issue, wait until it's fixed in the 5.1 branch)
NOTE: https://trac.ffmpeg.org/ticket/11385
NOTE: Fixed by: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/1446e37d3d032e1452844778b3e6ba2c20f0c322
+ NOTE: Fixed by: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/145a3a84550a1c3a3b848c12a64b53c3c41d2888 (n7.1.1)
CVE-2025-22888 (Movable Type contains a stored cross-site scripting vulnerability in t ...)
- movabletype-opensource <removed>
CVE-2025-22622 (Age Verification for your checkout page. Verify your customer's identi ...)
@@ -16962,6 +16964,7 @@ CVE-2025-0518 (Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpe
- ffmpeg 7:7.1.1-1
[bookworm] - ffmpeg <postponed> (Minor issue, wait until it's fixed in the 5.1 branch)
NOTE: Fixed by: https://github.com/FFmpeg/FFmpeg/commit/b5b6391d64807578ab872dc58fb8aa621dcfc38a
+ NOTE: Fixed by: https://github.com/FFmpeg/FFmpeg/commit/b827ac49b770635fc666f8543cb9585e1bc6308b (n7.1.1)
CVE-2025-0473 (Vulnerability in the PMB platform that allows an attacker to persist t ...)
NOT-FOR-US: PMB platform
CVE-2025-0472 (Information exposure in the PMB platform affecting versions 4.2.13 and ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f287753d11818c2d84c77963c06e807564567904
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f287753d11818c2d84c77963c06e807564567904
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250309/3eeeb660/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list