[FFmpeg-cvslog] [ffmpeg-web] branch master updated. fcf9585 web/security: Add CVE-2018-14394 and CVE-2018-14395

ffmpeg-git at ffmpeg.org ffmpeg-git at ffmpeg.org
Thu Jul 19 21:26:34 EEST 2018


The branch, master has been updated
       via  fcf958524224a581d3765dcfd3efa50d6fcf58ee (commit)
      from  8648f091968d24233ceacc557b08e771d3d96213 (commit)


- Log -----------------------------------------------------------------
commit fcf958524224a581d3765dcfd3efa50d6fcf58ee
Author:     Michael Niedermayer <michael at niedermayer.cc>
AuthorDate: Thu Jul 19 20:12:55 2018 +0200
Commit:     Michael Niedermayer <michael at niedermayer.cc>
CommitDate: Thu Jul 19 20:12:55 2018 +0200

    web/security: Add CVE-2018-14394 and CVE-2018-14395

diff --git a/src/security b/src/security
index 69ca21b..2dbed88 100644
--- a/src/security
+++ b/src/security
@@ -12,6 +12,8 @@ CVE-2018-13301, 679d749eaba9e5a8b8a9ea22500ab559f5be8940 / 2aa9047486dbff12d9e04
 CVE-2018-13302, 20c5fb972101fa25dedaf35a9c0ce2bf02fa6b52 / ed22dc22216f74c75ee7901f82649e1ff725ba50
 CVE-2018-13303, 0003ace83b18f68c981c8ad401bee75315edf9f5 / 00e8181bd97c834fe60751b0c511d4bb97875f78
 CVE-2018-13304, 5fd1dce39a70340b9fd508154e48985902602e25 / bd27a9364ca274ca97f1df6d984e88a0700fb235
+CVE-2018-14394, 0981dfee7d413ec6f30f00ddb109e3959c05bebd / 3a2d21bc5f97aa0161db3ae731fc2732be6108b8
+CVE-2018-14395, fd53179f4a71e0acd807bdfff112a55e204fa4ba / fa19fbcf712a6a6cc5a5cfdc3254a97b9bce6582
 </pre>
 
 <h3>4.0.1</h3>
@@ -36,6 +38,14 @@ CVE-2018-7557, 7414d0bda7763f9bd69c26c068e482ab297c1c96
 
 <h2>FFmpeg 3.4</h2>
 
+<h3>3.4.4</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2018-14395, 2b8d4f6f0186b3ed0b223f665d32c36ed887149e / fa19fbcf712a6a6cc5a5cfdc3254a97b9bce6582
+</pre>
+
 <h3>3.4.3</h3>
 <p>
 Fixes following vulnerabilities:
@@ -47,6 +57,7 @@ CVE-2018-10001, 51035698bde9c13da7eedc1f6eb47d190bbc949d / 47b7c68ae54560e2308bd
 CVE-2018-12458, bd1fd3ff4b0437153a6c4717f59ce31a7bba8ca0 / e1182fac1afba92a4975917823a5f644bee7e6e8
 CVE-2018-13300, 3a04f518ac283194bb13d8aff7d9fa963d551547 / 95556e27e2c1d56d9e18f5db34d6f756f3011148
 CVE-2018-13302, 36c779bffe2ceef48a0fa4d7a6691c6895faf9e2 / ed22dc22216f74c75ee7901f82649e1ff725ba50
+CVE-2018-14394, 20ad61ffb7b0fc72d17b5c21035eb85a698ac64b / 3a2d21bc5f97aa0161db3ae731fc2732be6108b8
 </pre>
 
 <h3>3.4.2</h3>
@@ -87,6 +98,8 @@ Fixes following vulnerabilities:
 CVE-2018-12458, d1bac7f77772a68e164385d7018f2c2562e0d219 / e1182fac1afba92a4975917823a5f644bee7e6e8
 CVE-2018-13300, 672ada0f179b3ef45e52987d8c96716d23aa0722 / 95556e27e2c1d56d9e18f5db34d6f756f3011148
 CVE-2018-13302, 78b1fbca3404459dcf8a1c34b5c7f9a5825ad61f / ed22dc22216f74c75ee7901f82649e1ff725ba5
+CVE-2018-14394, 6a0a16e563f07722acd4b666b2c501e186e9fa4b / 3a2d21bc5f97aa0161db3ae731fc2732be6108b8
+CVE-2018-14395, 87ddf73e52b412ee015108ec2f1aaac7a05c947f / fa19fbcf712a6a6cc5a5cfdc3254a97b9bce6582
 </pre>
 
 <h3>3.3.7</h3>
@@ -186,6 +199,14 @@ CVE-2017-7866, e371f031b942d73e02c090170975561fabd5c264
 
 <h2>FFmpeg 3.2</h2>
 
+<h3>3.2.12</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2018-14395, 2c0e98a0b478284bdff6d7a4062522605a8beae5 / fa19fbcf712a6a6cc5a5cfdc3254a97b9bce6582
+</pre>
+
 <h3>3.2.11</h3>
 <p>
 Fixes following vulnerabilities:
@@ -198,6 +219,7 @@ CVE-2018-10001, 7050970d066b853f82b0891fd7b57c19b4fd9095 / 47b7c68ae54560e2308bd
 CVE-2018-12458, d6f8960812b0a4ceac299a9000a1e921c74e431a / e1182fac1afba92a4975917823a5f644bee7e6e8
 CVE-2018-13300, e6d3fd942f772f54ab6a5ca619cdaadef26b7702 / 95556e27e2c1d56d9e18f5db34d6f756f3011148
 CVE-2018-13302, 92972f19168f323cfe133a42abf130a5f159bfd6 / ed22dc22216f74c75ee7901f82649e1ff725ba50
+CVE-2018-14394, 3571bec56eb302dfe01732cc0cdcf75b35ae8211 / 3a2d21bc5f97aa0161db3ae731fc2732be6108b8
 </pre>
 
 <h3>3.2.10</h3>

-----------------------------------------------------------------------

Summary of changes:
 src/security | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)


hooks/post-receive
-- 



More information about the ffmpeg-cvslog mailing list