thr3ads.net - Secure testing commits - [Secure-testing-commits] r16533

If this information is useful, please help other people find it:
Share via:

Moritz Muehlenhoff

2011-Apr-17 17:02 UTC

[Secure-testing-commits] r16533 - data/CVE

Author: jmm
Date: 2011-04-17 17:02:34 +0000 (Sun, 17 Apr 2011)
New Revision: 16533

Modified:
   data/CVE/list
Log:
Debian''s ffmpeg switched to the libav fork


Modified: data/CVE/list
==================================================================---
data/CVE/list	2011-04-16 17:57:50 UTC (rev 16532)
+++ data/CVE/list	2011-04-17 17:02:34 UTC (rev 16533)
@@ -1220,8 +1220,8 @@
 	- chromium-browser 10.0.648.127~r76697-1
 	[squeeze] - chromium-browser <not-affected>
 	[wheezy] - chromium-browser <not-affected>
-	- ffmpeg <undetermined>
-	TODO: need info on ffmpeg
+	- libav <undetermined>
+	TODO: need info on ffmpeg/libav
 CVE-2011-1197 (Google Chrome before 10.0.648.127 does not properly perform
table ...)
 	{DSA-2189-1}
 	- chromium-browser 10.0.648.127~r76697-1
@@ -1231,8 +1231,8 @@
 	- chromium-browser 10.0.648.127~r76697-1
 	[squeeze] - chromium-browser <not-affected>
 	[wheezy] - chromium-browser <not-affected>
-	- ffmpeg <undetermined>
-	TODO: need info on ffmpeg
+	- libav <undetermined>
+	TODO: need info on ffmpeg/libav
 CVE-2011-1195 (Use-after-free vulnerability in Google Chrome before
10.0.648.127 ...)
 	- chromium-browser 10.0.648.127~r76697-1
 	[squeeze] - chromium-browser <not-affected>
@@ -2948,7 +2948,8 @@
 	NOTE: recheck when 0.6.x gets uploaded
 CVE-2010-4704 (libavcodec/vorbis_dec.c in the Vorbis decoder in FFmpeg 0.6.1
and ...)
 	{DSA-2165-1}
-	- ffmpeg <unfixed> (low; bug #611495)
+	- libav 4:0.6.2-1 (low; bug #611495)
+	- ffmpeg <removed> (low; bug #611495)
 	- ffmpeg-debian <removed> (low)
 	NOTE: this is a crash found by fuzzing and not clearly exploitable (can be
combined with other fixes so low urgency)
 CVE-2010-XXXX

Secure testing commits - Apr 2011 - r16533 - data/CVE

[Secure-testing-commits] r16533 - data/CVE