[Secure-testing-commits] r38990 - data/CVE

Salvatore Bonaccorso Sun, 17 Jan 2016 10:24:06 -0800

Author: carnil
Date: 2016-01-17 18:23:00 +0000 (Sun, 17 Jan 2016)
New Revision: 38990


Modified:
   data/CVE/list
Log:
Two CVEs fixed in unstable for ffmpeg

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-01-17 16:35:19 UTC (rev 38989)
+++ data/CVE/list       2016-01-17 18:23:00 UTC (rev 38990)
@@ -429,13 +429,13 @@
        NOTE: Fixed by: 
https://anongit.mindrot.org/openssh.git/commit/?id=2fecfd486bdba9f51b3a789277bb0733ca36e1c0
        NOTE: Introduced by: 
https://anongit.mindrot.org/openssh.git/commit/packet.c?id=091c302829210c41e7f57c3f094c7b9c054306f0
 (V_6_8_P1)
 CVE-2016-1898 (FFmpeg 2.x allows remote attackers to conduct cross-origin 
attacks and ...)
-       - ffmpeg <unfixed>
+       - ffmpeg 7:2.8.5-1
        [squeeze] - ffmpeg <end-of-life> (Not supported in Squeeze LTS)
        - libav <removed>
        NOTE: http://habrahabr.ru/company/mailru/blog/274855
        NOTE: Fixed in 2.8.5 upstream
 CVE-2016-1897 (FFmpeg 2.x allows remote attackers to conduct cross-origin 
attacks and ...)
-       - ffmpeg <unfixed>
+       - ffmpeg 7:2.8.5-1
        [squeeze] - ffmpeg <end-of-life> (Not supported in Squeeze LTS)
        - libav <removed>
        NOTE: http://habrahabr.ru/company/mailru/blog/274855


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r38990 - data/CVE

Reply via email to