[Git][security-tracker-team/security-tracker][master] new ffmpeg issue

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8f8b185f by Moritz Muehlenhoff at 2026-03-17T08:29:46+01:00
new ffmpeg issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -199,7 +199,12 @@ CVE-2025-69768 (SQL Injection vulnerability in Chyrp v.2.5.2 and before allows a
 CVE-2025-69727 (An Incorrect Access Control vulnerability exists in INDEX-EDUCATION PR ...)
 	TODO: check
 CVE-2025-69693 (Out-of-bounds read in FFmpeg 8.0 and 8.0.1 RV60 video decoder (libavco ...)
-	TODO: check
+	- ffmpeg <unfixed>
+	[trixie] - ffmpeg <not-affected> (Vulnerable code not present)
+	[bookworm] - ffmpeg <not-affected> (Vulnerable code not present)
+	[bullseye] - ffmpeg <not-affected> (Vulnerable code not present)
+	NOTE: Fixed by: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/8abeb879df66ea8d27ce1735925ced5a30813de4 (n8.1)
+	NOTE: Introduced by: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/33802e7c32376c33c61f62aa8052610db5f5c6f0 (n8.0)
 CVE-2025-69246 (Raytha CMS does not have any brute force protection mechanism implemen ...)
 	NOT-FOR-US: Raytha CMS
 CVE-2025-69245 (Raytha CMS is vulnerable to Reflected XSS via returnUrlparameter in lo ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8f8b185f435372b23039598bd5be601b75a5a617

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8f8b185f435372b23039598bd5be601b75a5a617
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260317/c631b58c/attachment.htm>