Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bde8f63a by Sylvain Beucler at 2024-04-29T10:24:33+02:00
CVE-2023-51794/qemu: buster postponed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -538,6 +538,7 @@ CVE-2023-51794 (Buffer Overflow vulnerability in Ffmpeg
v.N113007-g8d24a28d06 al
- ffmpeg <unfixed>
[bookworm] - ffmpeg <postponed> (Pick up when fixed in 5.1.x)
[bullseye] - ffmpeg <postponed> (Pick up when fixed in 4.3.x)
+ [buster] - ffmpeg <postponed> (Pick up when fixed in 4.1.x)
NOTE: https://trac.ffmpeg.org/ticket/10746
NOTE: Fixed in
https://github.com/ffmpeg/FFmpeg/commit/50f0f8c53c818f73fe2d752708e2fa9d2a2d8a07
(n7.0)
CVE-2023-51365 (A path traversal vulnerability has been reported to affect
several QNA ...)
@@ -2297,7 +2298,7 @@ CVE-2024-31582 (FFmpeg version n6.1 was discovered to
contain a heap buffer over
- ffmpeg <unfixed>
[bookworm] - ffmpeg <postponed> (Pick up when fixed in 5.1.x)
[bullseye] - ffmpeg <postponed> (Pick up when fixed in 4.3.x)
- [buster] - ffmpeg <postponed> (Pick up when fixed in 4.3.x)
+ [buster] - ffmpeg <postponed> (Pick up when fixed in 4.1.x)
NOTE: Fixed by
https://github.com/ffmpeg/ffmpeg/commit/99debe5f823f45a482e1dc08de35879aa9c74bd2
(n7.0)
CVE-2024-31581 (FFmpeg version n6.1 was discovered to contain an improper
validation o ...)
[experimental] - ffmpeg 7:7.0-1
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bde8f63a44ded7717328ac0e0526cb864f913db9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bde8f63a44ded7717328ac0e0526cb864f913db9
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
