Bug#694483: CVEs: CVE-2012-2882 CVE-2012-5359 CVE-2012-5360 CVE-2012-5361
Arne Wichmann
aw at linux.de
Mon Nov 26 19:30:46 UTC 2012
Source: libav
Version: 0.8.4
Severity: grave
Tags: security
Justification: user security hole
Dear Maintainer,
I have here another series of CVEs for ffmpeg/libav:
CVE-2012-2882
CVE-2012-5359
CVE-2012-5360
CVE-2012-5361
For the last 3 http://technet.microsoft.com/en-us/security/msvr/msvr12-017
claims that they are fixed in ffmpeg 0.11, but the available information on
all of them is a bit thin.
Thanks for all the good work!
AW
-- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (500, 'testing'), (500, 'stable'), (50, 'unstable'), (40, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.2.29 (SMP w/2 CPU cores; PREEMPT)
Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1)
Shell: /bin/sh linked to /bin/dash
More information about the pkg-multimedia-maintainers
mailing list