Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1fc4100d by Moritz Muehlenhoff at 2025-02-26T17:37:17+01:00
new ffmpeg issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4202,7 +4202,10 @@ CVE-2025-22920 (A heap buffer overflow vulnerability in
FFmpeg before commit 4bf
NOTE: Introduced with:
https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/545de54e3e0ce5ad1285aa5e111e6657ad803f79
NOTE: Fixed by:
https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/4bf784c0e5615c3f934e677d5de093a8be7da7ae
CVE-2025-22919 (A reachable assertion in FFmpeg git-master commit
N-113007-g8d24a28d06 ...)
- TODO: check
+ - ffmpeg <unfixed>
+ [bookworm] - ffmpeg <postponed> (Minor issue, wait until it's fixed in
the 5.1 branch)
+ NOTE: https://trac.ffmpeg.org/ticket/11385
+ NOTE: Fixed by:
https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/1446e37d3d032e1452844778b3e6ba2c20f0c322
CVE-2025-22888 (Movable Type contains a stored cross-site scripting
vulnerability in t ...)
- movabletype-opensource <removed>
CVE-2025-22622 (Age Verification for your checkout page. Verify your
customer's identi ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1fc4100d39d0d7f42a5537007d2cb36b00541f4a
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1fc4100d39d0d7f42a5537007d2cb36b00541f4a
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
