Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Sun, 2 Sep 2012 23:36:25 +0200
From: Michael Niedermayer <michaelni@....at>
To: Moritz Muehlenhoff <jmm@...til.org>
Cc: oss-security@...ts.openwall.com
Subject: Re: Information on security issues fixed in ffmpeg 0.11?

Hi Moritz

On Fri, Aug 31, 2012 at 12:34:48PM +0200, Moritz Muehlenhoff wrote:
> Hi Michael,
> 
> [Adding the oss-security mailing list to CC, which is used by
> all major distros to discuss security issues in open source
> software]
> 
> http://ffmpeg.org/security.html lists several CVE ID, which
> have been fixed in ffmpeg 0.11;
> 
> CVE-2012-2772, CVE-2012-2774, CVE-2012-2775, CVE-2012-2776, CVE-2012-2777,
> CVE-2012-2779, CVE-2012-2782, CVE-2012-2783, CVE-2012-2784, CVE-2012-2785,
> CVE-2012-2786, CVE-2012-2787, CVE-2012-2788, CVE-2012-2789, CVE-2012-2790,
> CVE-2012-2791, CVE-2012-2792, CVE-2012-2793, CVE-2012-2794, CVE-2012-2795,
> CVE-2012-2796, CVE-2012-2797, CVE-2012-2798, CVE-2012-2799, CVE-2012-2800,
> CVE-2012-2801, CVE-2012-2802, CVE-2012-2803, CVE-2012-2804,
> 
> Do you additional information on these issues, preferably a matching git
> commit to the CVE IDs?

Please recheck the page, ive added git hashes to them.

[...]
-- 
Michael     GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB

In a rich man's house there is no place to spit but his face.
-- Diogenes of Sinope

[ CONTENT OF TYPE application/pgp-signature SKIPPED ]

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ