Bug#504977: ffmpeg-debian: Several security issues
Reinhard Tartler
siretart at tauware.de
Fri Jan 9 21:40:58 UTC 2009
Ben Hutchings <ben at decadent.org.uk> writes:
>> I'll upload it as soon as someone can confirm me that these packages
>> actually fix the problem.
>
> Based on inspection of the original code and patch for -4866 in this
> test package, I am confident that this will be fixed.
hm. okay, then I'll upload that package.
> Please also include the fix for -4867 (#496612) as it sounds like the
> bug could be used for code injection and the change looks low-risk.
could you attach a patch there please first?
> -4868 apparently doesn't apply to lenny or sid; the original leak might
> but it appears to be extremely limited and probably not controllable by
> an attacker.
>
> -4869 is not clearly defined so seems impossible to address.
I see.
--
Gruesse/greetings,
Reinhard Tartler, KeyID 945348A4
More information about the pkg-multimedia-maintainers
mailing list