Sebastian Ramacher pushed to branch master at Debian Security Tracker / security-tracker
Commits: 65383bd2 by Sebastian Ramacher at 2019-05-19T15:58:18Z Mark some ffmpeg issues as fixed - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1942,11 +1942,11 @@ CVE-2019-11341 CVE-2019-11340 (util/emailutils.py in Matrix Sydent before 1.0.2 mishandles registrati ...) NOT-FOR-US: Matrix Sydent CVE-2019-11339 (The studio profile decoder in libavcodec/mpeg4videodec.c in FFmpeg 4.0 ...) - - ffmpeg <unfixed> + - ffmpeg 7:4.1.3-1 NOTE: https://github.com/FFmpeg/FFmpeg/commit/1f686d023b95219db933394a7704ad9aa5f01cbb NOTE: https://github.com/FFmpeg/FFmpeg/commit/d227ed5d598340e719eff7156b1aa0a4469e9a6a CVE-2019-11338 (libavcodec/hevcdec.c in FFmpeg 4.1.2 mishandles detection of duplicate ...) - - ffmpeg <unfixed> + - ffmpeg 7:4.1.3-1 NOTE: https://github.com/FFmpeg/FFmpeg/commit/54655623a82632e7624714d7b2a3e039dc5faa7e CVE-2019-11337 RESERVED @@ -6618,7 +6618,7 @@ CVE-2019-9723 CVE-2019-9722 RESERVED CVE-2019-9721 (A denial of service in the subtitle decoder in FFmpeg 4.1 allows attac ...) - - ffmpeg <unfixed> (bug #926666) + - ffmpeg 7:4.1.3-1 (bug #926666) [stretch] - ffmpeg <not-affected> (Vulnerable code not present) NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/894995c41e0795c7a44f81adc4838dedc3932e65 CVE-2019-9720 @@ -6626,7 +6626,7 @@ CVE-2019-9720 CVE-2019-9719 RESERVED CVE-2019-9718 (In FFmpeg 4.1, a denial of service in the subtitle decoder allows atta ...) - - ffmpeg <unfixed> (low; bug #926666) + - ffmpeg 7:4.1.3-1 (low; bug #926666) [stretch] - ffmpeg <postponed> (Wait until fixed in 3.2.x release) NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/1f00c97bc3475c477f3c468cf2d924d5761d0982 CVE-2019-9717 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/65383bd2281dfd2a3638e1b47d056578e11ea57b -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/65383bd2281dfd2a3638e1b47d056578e11ea57b You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits