Bug#498764: [Secure-testing-team] Bug#498764: ffmpeg-debian: vulnerable to denial-of-service attack (CVE-2008-3230)

Sat Sep 13 05:40:33 UTC 2008

severity 498764 important
thanks

On Fri, Sep 12, 2008 at 10:59:31PM -0400, Michael Gilbert wrote:
> Package: ffmpeg-debian
> Version: 0.svn20080206-12
> Severity: grave
> Tags: security
> Justification: user security hole

> according to the debian security tracker [1], ffmpeg is known to be
> vulnerable to a denial-of-service attack [2].  the description of the
> CVE is

DoS vulnerabilities are not grave.

-- 
Steve Langasek                   Give me a lever long enough and a Free OS
Debian Developer                   to set it on, and I can move the world.
Ubuntu Developer                                    http://www.debian.org/
slangasek at ubuntu.com                                     vorlon at debian.org