Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8f8b185f by Moritz Muehlenhoff at 2026-03-17T08:29:46+01:00
new ffmpeg issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -199,7 +199,12 @@ CVE-2025-69768 (SQL Injection vulnerability in Chyrp
v.2.5.2 and before allows a
CVE-2025-69727 (An Incorrect Access Control vulnerability exists in
INDEX-EDUCATION PR ...)
TODO: check
CVE-2025-69693 (Out-of-bounds read in FFmpeg 8.0 and 8.0.1 RV60 video decoder
(libavco ...)
- TODO: check
+ - ffmpeg <unfixed>
+ [trixie] - ffmpeg <not-affected> (Vulnerable code not present)
+ [bookworm] - ffmpeg <not-affected> (Vulnerable code not present)
+ [bullseye] - ffmpeg <not-affected> (Vulnerable code not present)
+ NOTE: Fixed by:
https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/8abeb879df66ea8d27ce1735925ced5a30813de4
(n8.1)
+ NOTE: Introduced by:
https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/33802e7c32376c33c61f62aa8052610db5f5c6f0
(n8.0)
CVE-2025-69246 (Raytha CMS does not have any brute force protection mechanism
implemen ...)
NOT-FOR-US: Raytha CMS
CVE-2025-69245 (Raytha CMS is vulnerable to Reflected XSS via
returnUrlparameter in lo ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8f8b185f435372b23039598bd5be601b75a5a617
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8f8b185f435372b23039598bd5be601b75a5a617
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
