Author: carnil
Date: 2017-05-19 17:43:10 +0000 (Fri, 19 May 2017)
New Revision: 51759
Modified:
data/CVE/list
Log:
Move explanation to brackets
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-19 17:26:43 UTC (rev 51758)
+++ data/CVE/list 2017-05-19 17:43:10 UTC (rev 51759)
@@ -47937,14 +47937,12 @@
NOTE: Fixed in 5.6.18, 7.0.3
CVE-2016-2330 (libavcodec/gif.c in FFmpeg before 2.8.6 does not properly
calculate a ...)
- ffmpeg 2.8.6-1
- - libav <not-affected>
+ - libav <not-affected> (Libav not affected according to upstream)
NOTE:
http://git.videolan.org/?p=ffmpeg.git;a=commit;h=03d83ba34b2070878909eae18dfac0f519503777
- NOTE: Libav not affected according to upstream.
CVE-2016-2329 (libavcodec/tiff.c in FFmpeg before 2.8.6 does not properly
validate ...)
- ffmpeg 2.8.6-1
- - libav <not-affected>
+ - libav <not-affected> (Vulnerable code not present in any Libav
version)
NOTE:
http://git.videolan.org/?p=ffmpeg.git;a=commit;h=89f464e9c229006e16f6bb5403c5529fdd0a9edd
- NOTE: Vulnerable code not present in any Libav version.
CVE-2016-2328 (libswscale/swscale_unscaled.c in FFmpeg before 2.8.6 does not
validate ...)
- ffmpeg 2.8.6-1
- libav <not-affected> (Vulnerable code not present)
@@ -60775,8 +60773,7 @@
CVE-2015-6819 (Multiple integer underflows in the ff_mjpeg_decode_frame
function in ...)
- ffmpeg 7:2.7.2-1
[squeeze] - ffmpeg <end-of-life> (Not supported in Squeeze LTS)
- - libav <not-affected>
- NOTE: Vulnerable code not present in any Libav version.
+ - libav <not-affected> (Vulnerable code not present in any Libav
version)
CVE-2015-6818 (The decode_ihdr_chunk function in libavcodec/pngdec.c in FFmpeg
before ...)
- ffmpeg 7:2.7.2-1
[squeeze] - ffmpeg <end-of-life> (Not supported in Squeeze LTS)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
