[Secure-testing-commits] r20912 - data/CVE

Reinhard Tartler Sun, 13 Jan 2013 07:30:04 -0800

Author: siretart
Date: 2013-01-13 15:29:54 +0000 (Sun, 13 Jan 2013)
New Revision: 20912


Modified:
   data/CVE/list
Log:
new libav upload fixes various CVE entries

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2013-01-13 01:06:08 UTC (rev 20911)
+++ data/CVE/list       2013-01-13 15:29:54 UTC (rev 20912)
@@ -12106,78 +12106,62 @@
        RESERVED
 CVE-2012-2804 (Unspecified vulnerability in libavcodec/indeo3.c in FFmpeg 
before 0.11 ...)
        - ffmpeg <removed> (bug #688849)
-       - libav <unfixed> (bug #688847)
-       NOTE: scheduled for libav 0.8.5
+       - libav 6:0.8.5-1 (bug #688847)
 CVE-2012-2803 (Double free vulnerability in the mpeg_decode_frame function in 
...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
-       - libav <unfixed> (bug #688847)
-       NOTE: scheduled for libav 0.8.5
+       - libav 6:0.8.5-1 (bug #688847)
 CVE-2012-2802 (Unspecified vulnerability in the ac3_decode_frame function in 
...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2801 (Unspecified vulnerability in libavcodec/avs.c in FFmpeg before 
0.11 ...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2800 (Unspecified vulnerability in the ff_ivi_process_empty_tile 
function in ...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2799 (Unspecified vulnerability in libavcodec/wmalosslessdec.c in 
FFmpeg ...)
        - libav <not-affected> (Vulnerable code not present in 0.8 version from 
unstable, fixed in 0.9 version in experimental)
        - ffmpeg <not-affected> (Vulnerable code not present)
 CVE-2012-2798 (Unspecified vulnerability in the decode_dds1 function in ...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2797 (Unspecified vulnerability in the decode_frame_mp3on4 function 
in ...)
        - ffmpeg <removed> (bug #688849)
-       - libav <unfixed> (bug #688847)
+       - libav 6:0.8.5-1 (bug #688847)
        NOTE: patch proposed: http://patches.libav.org/patch/32642/
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2796 (Unspecified vulnerability in the vc1_decode_frame function in 
...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2795 (Multiple unspecified vulnerabilities in 
libavcodec/wmalosslessdec.c in ...)
        - libav <not-affected> (Vulnerable code not present in 0.8 version from 
unstable, fixed in 0.9 version in experimental)
        - ffmpeg <not-affected> (Vulnerable code not present)
 CVE-2012-2794 (Unspecified vulnerability in the decode_mb_info function in ...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2793 (Unspecified vulnerability in the lag_decode_zero_run_line 
function in ...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2792 (Unspecified vulnerability in the decode_init function in ...)
        - libav <not-affected> (Vulnerable code not present in 0.8 version from 
unstable, fixed in 0.9 version in experimental)
        - ffmpeg <not-affected> (Vulnerable code not present)
 CVE-2012-2791 (Multiple unspecified vulnerabilities in the (1) decode_band_hdr 
...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
-       - libav <unfixed> (bug #688847)
-       NOTE: scheduled for libav 0.8.5
+       - libav 6:0.8.5-1 (bug #688847)
 CVE-2012-2790 (Unspecified vulnerability in the read_var_block_data function 
in ...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2789 (Unspecified vulnerability in the avi_read_packet function in 
...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2788 (Unspecified vulnerability in the avi_read_packet function in 
...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2787 (Unspecified vulnerability in the decode_frame function in ...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2786 (Unspecified vulnerability in the decode_wdlt function in ...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2785 (Multiple unspecified vulnerabilities in 
libavcodec/wmalosslessdec.c in ...)
        - libav <not-affected> (Vulnerable code not present in 0.8 version from 
unstable, fixed in 0.9 version in experimental)
        - ffmpeg <not-affected> (Vulnerable code not present)
@@ -12188,8 +12172,7 @@
        TODO: mark this properly as duplicate
 CVE-2012-2783 (Unspecified vulnerability in libavcodec/vp56.c in FFmpeg before 
0.11 ...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
-       - libav <unfixed> (bug #688847)
-       NOTE: scheduled for libav 0.8.5
+       - libav 6:0.8.5-1 (bug #688847)
 CVE-2012-2782 (Unspecified vulnerability in the decode_slice_header function 
in ...)
        - libav <not-affected> (Doesn't affect libav)
 CVE-2012-2781
@@ -12199,21 +12182,17 @@
 CVE-2012-2779 (Unspecified vulnerability in the decode_frame function in ...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2778
        RESERVED
 CVE-2012-2777 (Unspecified vulnerability in the decode_pic function in ...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2776 (Unspecified vulnerability in the decode_cell_data function in 
...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2775 (Unspecified vulnerability in the read_var_block_data function 
in ...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2774 (The ff_MPV_frame_start function in libavcodec/mpegvideo.c in 
FFmpeg ...)
        - ffmpeg <undetermined> (bug #688849)
        - libav <not-affected> (bug #688847)
@@ -12226,7 +12205,6 @@
 CVE-2012-2772 (Unspecified vulnerability in the ff_rv34_decode_frame function 
in ...)
        [squeeze] - ffmpeg <unfixed> (bug #688849)
        - libav 6:0.8.4-1 (bug #688847)
-       NOTE: scheduled for libav 0.8.5
 CVE-2012-2771
        RESERVED
 CVE-2012-2770 (The Authen::ExternalAuth extension before 0.11 for Best 
Practical ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r20912 - data/CVE

Reply via email to