[FFmpeg-trac] #8421(undetermined:new): Binary scan vulnerability in Dependent dlls used by FFMPEG
FFmpeg
trac at avcodec.org
Tue Dec 10 16:19:16 EET 2019
#8421: Binary scan vulnerability in Dependent dlls used by FFMPEG
--------------------------------------+----------------------------------
Reporter: rahul.singh | Type: defect
Status: new | Priority: normal
Component: undetermined | Version: 4.2
Keywords: | Blocked By:
Blocking: | Reproduced by developer: 0
Analyzed by developer: 0 |
--------------------------------------+----------------------------------
Below are some vulnerability we found in our Binary scan of FFMPEG
executable files
'''Component :libxml2'''
CVE-2018-14404
CVE-2018-14567
CVE-2018-9251
'''Component :Libvorbis'''
CVE-2018-10392
CVE-2018-10393
Can we get a confirmation that this vulnerabilities are going to be
resolved in future release.
Thanks,
Rahul Singh
--
Ticket URL: <https://trac.ffmpeg.org/ticket/8421>
FFmpeg <https://ffmpeg.org>
FFmpeg issue tracker
More information about the FFmpeg-trac
mailing list