[FFmpeg-cvslog] [ffmpeg-web] branch master updated. 5d3d6ed web/security: fill in 1.0 branch CVE backports

gitolite ffmpeg-cvslog at ffmpeg.org
Mon Mar 10 15:12:54 CET 2014


The branch, master has been updated
       via  5d3d6edd70087df30debd582ebc279121a24e3b5 (commit)
      from  2bd62b1e80445bcc54be26fc2be8cc2cd3117d76 (commit)


- Log -----------------------------------------------------------------
commit 5d3d6edd70087df30debd582ebc279121a24e3b5
Author:     Michael Niedermayer <michaelni at gmx.at>
AuthorDate: Mon Mar 10 15:10:21 2014 +0100
Commit:     Michael Niedermayer <michaelni at gmx.at>
CommitDate: Mon Mar 10 15:10:21 2014 +0100

    web/security: fill in 1.0 branch CVE backports
    
    Signed-off-by: Michael Niedermayer <michaelni at gmx.at>

diff --git a/src/security b/src/security
index 1dbd09a..e348055 100644
--- a/src/security
+++ b/src/security
@@ -303,6 +303,65 @@ CVE-2012-6618, 03847eb8259291b4ff1bd840bd779d0699d71f96
 </pre>
 
 <h2>FFmpeg 1.0</h2>
+<h3>1.0.9</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2013-7023, 6f9ae27f5136a29eea18effb033fe9d6f67b892e / f31011e9abfb2ae75bb32bc44e2c34194c8dc40a
+CVE-2014-2098, b9bf17c55ac2b3b06e44a221994563fa894c1347 / ec9578d54d09b64bf112c2bf7a34b1ef3b93dbd3
+CVE-2014-2099, 54b61181ed55ab38034520eb27d18cf8a2d3732e / c919e1ca2ecfc47d796382973ba0e48b8f6f92a2
+</pre>
+
+<h3>1.0.8</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2013-7009, 7549bcb295f04071dcbfc7a412e0618fb38dd8a3 / 3819db745da2ac7fb3faacb116788c32f4753f34
+CVE-2013-7010, e12ada6fd1e5860cdbb328eddbcb51c52d2054ca / 454a11a1c9c686c78aa97954306fb63453299760
+CVE-2013-7014, 5bd2b24db399d9821a0396f96dc8e2392d80abe1 / 86736f59d6a527d8bc807d09b93f971c0fe0bb07
+CVE-2013-7015, 65753697efdb9e4dd61f4ba582bd04476acdc69a / 880c73cd76109697447fbfbaa8e5ee5683309446
+CVE-2013-7018, f229c598939c34df75db7845495f077b49e233d4 / 9a271a9368eaabf99e6c2046103acb33957e63b7
+CVE-2013-7021, 11586b077e6e81bc390b6df657429b4a39741d2f / cdd5df8189ff1537f7abe8defe971f80602cc2d2
+</pre>
+
+<h3>1.0.7</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2013-3670, d814b9b51ddd3764e809c1d0f82b770e0bc085fd / c1f2c4c3b49277d65b71ccdd3b6b2878f1b593eb
+CVE-2013-3671, 52fa7a860318aa871624c7938801492983c24456 / 7edb984dd051b6919d7d8471c70499273f31b0fa
+CVE-2013-3672, cd24fdad470724651f6d5506ef94da92106ac6d3 / 8d3c99e825317b7efda5fd12e69896b47c700303
+CVE-2013-3674, 2c66058737e254756118b7f7be0be7d3bfbb4fe3 / ad002e1a13a8df934bd6cb2c84175a4780ab8942
+CVE-2013-3675, 813b3d11e0286b1d656633cd5717f3f43db5d1ac / 9dd04f6d8cdd1c10c28b2cb4252c1a41df581915
+</pre>
+
+<h3>1.0.6</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2013-2495, 31f337c1e44ebe53e4e23b24aa6c2a62f6862236 / 3dbc0ff9c3e6f6e0d08ea3d42cb33761bae084ba
+CVE-2013-2496, f84ddb0c0fbb7f1c0ff34418426840f6ea79448e / e398990eb87785e20e065cd3f14d1dbb69df4392
+</pre>
+
+<h3>1.0.5</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2013-0872, e35da91b52cc09d6e4f2a7191cfbc8127e2eda51 / 21cd905cd44a4bbafe8631bbaa6021d328413ce5
+CVE-2013-0873, 82213d67bad8785aef8806855fd0d291954193df / 4f1279154ee9baf2078241bf5619774970d18b25
+CVE-2013-0874, d17b9469c940f056d87fefc79d80fac47c69c1d8 / e1219cdaf9fb4bc8cea410e1caf802373c1bfe51
+CVE-2013-0875, 534c0df6e0ed9f26012d77e990d4da9b73d45e48 / 1ac0fa50eff30d413206cffa5f47f7fe6d4849b1
+CVE-2013-0876, f62537d9f1b43b04e64e7dec79049556f7bc31a7 / 5260edee7e5bd975837696c8c8c1a80eb2fbd7c1
+CVE-2013-0877, 4f873341b4d522b1bfa385a1f6fc86bb8b6dc879 / 365270aec5c2b9284230abc702b11168818f14cf
+CVE-2013-2276, 1ddb0b6fa0bd46b730dc60240f738597cadfe1e0 / 8a6449167a6da8cb747cfe3502ae86ffaac2ed48
+CVE-2013-2277, 676df8c4c70c67f8f31a439f8ab301f7de3fe977 / bdeb61ccc67911cfc5e20c7cfb1312d0501ca90a
+</pre>
+
 <h3>1.0.4</h3>
 <p>
 Fixes following vulnerabilities:

-----------------------------------------------------------------------

Summary of changes:
 src/security |   59 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 files changed, 59 insertions(+), 0 deletions(-)


hooks/post-receive
-- 



More information about the ffmpeg-cvslog mailing list