Secure testing commits - Sep 2011 - r17160 - data/CVE

Author: gilbert-guest
Date: 2011-09-02 04:28:12 +0000 (Fri, 02 Sep 2011)
New Revision: 17160

Modified:
   data/CVE/list
Log:
ffmpeg updates

Modified: data/CVE/list
==================================================================---
data/CVE/list	2011-09-01 21:01:36 UTC (rev 17159)
+++ data/CVE/list	2011-09-02 04:28:12 UTC (rev 17160)
@@ -3039,16 +3039,16 @@
 CVE-2011-2163 (Unspecified vulnerability in Virtualization Manager 1.2.2 in IBM
...)
 	NOT-FOR-US: IBM Systems Director
 CVE-2011-2162 (Multiple unspecified vulnerabilities in FFmpeg 0.4.x through
0.6.x, as ...)
-	- libav 4:0.7-1 (bug #628448)
-	- ffmpeg <unfixed>
+	- libav <undetermined> (bug #628448)
+	- ffmpeg <undetermined>
 	- ffmpeg-debian <removed>
 CVE-2011-2161 (The ape_read_header function in ape.c in libavformat in FFmpeg
before ...)
-	- libav 4:0.7-1 (bug #628448)
+	- libav 4:0.6-1 (bug #628448)
 	- ffmpeg <unfixed>
 	- ffmpeg-debian <removed>
 CVE-2011-2160 (The VC-1 decoding functionality in FFmpeg before 0.5.4, as used
in ...)
-	- libav 4:0.7-1 (bug #628448)
-	- ffmpeg <unfixed>
+	- libav <undetermined> (bug #628448)
+	- ffmpeg <undetermined>
 	- ffmpeg-debian <removed>
 CVE-2011-2159 (The SmarterTools SmarterStats 6.0 web server omits the
Content-Type ...)
 	NOT-FOR-US: SmarterStats
@@ -7235,12 +7235,12 @@
 	NOTE: https://bugs.launchpad.net/ubuntu/+source/italc/+bug/714864
 	NOTE:
https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-February/001245.html
 CVE-2011-0723 (FFmpeg 0.5.x, as used in MPlayer and other products, allows
remote ...)
-	- libav <undetermined>
-	- ffmpeg <undetermined>
+	- libav 4:0.6-1
+	- ffmpeg <unfixed>
 	- ffmpeg-debian <removed>
 CVE-2011-0722 (FFmpeg before 0.5.4, as used in MPlayer and other products,
allows ...)
-	- libav <undetermined>
-	- ffmpeg <undetermined>
+	- libav 4:0.6-1 
+	- ffmpeg <unfixed>
 	- ffmpeg-debian <removed>
 CVE-2011-0721 (Multiple CRLF injection vulnerabilities in (1) chfn and (2) chsh
in ...)
 	{DSA-2164-1}
@@ -11378,8 +11378,8 @@
 CVE-2010-3909 (Incomplete blacklist vulnerability in config.template.php in
vtiger ...)
 	NOT-FOR-US: vtiger CRM
 CVE-2010-3908 (FFmpeg before 0.5.4, as used in MPlayer and other products,
allows ...)
-	- libav <undetermined>
-	- ffmpeg <undetermined>
+	- libav 4:0.6-1
+	- ffmpeg <unfixed>
 	- ffmpeg-debian <removed>
 CVE-2010-3907 (Multiple integer overflows in real.c in the Real demuxer plugin
in ...)
 	- vlc 1.1.3-1squeeze1