Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9679bfda by Moritz Muehlenhoff at 2025-12-07T20:17:45+01:00
one ffmpeg issue n/a
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -18440,10 +18440,9 @@ CVE-2025-60957 (OS Command Injection vulnerability in
EndRun Technologies Sonoma
CVE-2025-60956 (Cross Site Request Forgery (CSRF) vulnerability in EndRun
Technologies ...)
NOT-FOR-US: EndRun Technologies Sonoma D12 Network Time Server (GPS)
CVE-2025-59734 (It is possible to cause an use-after-free write in SANM
decoding with ...)
- - ffmpeg <unfixed>
- [trixie] - ffmpeg <postponed> (Minor issue, wait until it's fixed in
the 7.1 branch)
- [bookworm] - ffmpeg <postponed> (Minor issue, wait until it's fixed in
the 5.1 branch)
+ - ffmpeg <not-affected> (Vulnerable code introduced later)
NOTE: https://issuetracker.google.com/issues/440183164
+ NOTE: Introduced in https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/
NOTE: Fixed by:
https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/d311382c38df9c2237b33a9e8e860a5da7d2895d
(master)
NOTE: Fixed by:
https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/c41a70b6bb79707e1e3a4b0e31950cd986b9f50e
(master)
NOTE: Fixed by:
https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/af310e68db0791b94753a9670c9a9ef0d717e32a
(n8.0)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9679bfda5251cc934ee0e2a37282a740fd5b8686
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9679bfda5251cc934ee0e2a37282a740fd5b8686
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
