Bug#840434: ffmpeg: CVE-2016-7122 CVE-2016-7450 CVE-2016-7502 CVE-2016-7555 CVE-2016-7562 CVE-2016-7785 CVE-2016-7905
Salvatore Bonaccorso
carnil at debian.org
Tue Oct 11 15:13:48 UTC 2016
Source: ffmpeg
Version: 7:3.1.3-2
Severity: grave
Tags: security upstream patch fixed-upstream
Hi,
the following vulnerabilities were published for ffmpeg.
CVE-2016-7122[0], CVE-2016-7450[1], CVE-2016-7502[2],
CVE-2016-7555[3], CVE-2016-7562[4], CVE-2016-7785[5],
CVE-2016-7905[6].
The upstream commits are referenced on the security-tracker pages and
updating to 3.1.4 would fix all of them.
If you fix the vulnerabilities please also make sure to include the
CVE (Common Vulnerabilities & Exposures) ids in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2016-7122
[1] https://security-tracker.debian.org/tracker/CVE-2016-7450
[2] https://security-tracker.debian.org/tracker/CVE-2016-7502
[3] https://security-tracker.debian.org/tracker/CVE-2016-7555
[4] https://security-tracker.debian.org/tracker/CVE-2016-7562
[5] https://security-tracker.debian.org/tracker/CVE-2016-7785
[6] https://security-tracker.debian.org/tracker/CVE-2016-7905
Regards,
Salvatore
More information about the pkg-multimedia-maintainers
mailing list