white at alioth.debian.org
2008-Jul-09 14:52 UTC
[Secure-testing-commits] r9275 - data/CVE
Author: white Date: 2008-07-09 14:52:23 +0000 (Wed, 09 Jul 2008) New Revision: 9275 Modified: data/CVE/list Log: More information on the ffmpeg-free issue Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-07-09 14:50:32 UTC (rev 9274) +++ data/CVE/list 2008-07-09 14:52:23 UTC (rev 9275) @@ -32,8 +32,9 @@ CVE-2008-3069 (Multiple cross-site scripting (XSS) vulnerabilities in MyBB before ...) TODO: check CVE-2008-XXXX [ffmpeg STR demuxer buffer overflow] - - ffmpeg-free <unfixed> (bug filed) + - ffmpeg-free <unfixed> (bug #489965; low) NOTE: http://svn.mplayerhq.hu/ffmpeg?view=rev&revision=13993 + NOTE: CVE id requested TODO: Check the various embedders in Etch, horray for librification in Lenny CVE-2008-3068 (Microsoft Crypto API 5.131.2600.2180 through 6.0, as used in Outlook, ...) NOT-FOR-US: Microsoft Crypto API