[FFmpeg-cvslog] [ffmpeg-web] branch master updated. 9a50466 web/security: Add more old CVE numbers

ffmpeg-git at ffmpeg.org ffmpeg-git at ffmpeg.org
Tue Mar 4 01:23:12 EET 2025 

The branch, master has been updated
       via  9a50466872f4ca2f8d56a3421a47e57dca434264 (commit)
      from  ffba7d5d9a58b85615051a807c7d229ad165a01d (commit)


- Log -----------------------------------------------------------------
commit 9a50466872f4ca2f8d56a3421a47e57dca434264
Author:     Michael Niedermayer <michael at niedermayer.cc>
AuthorDate: Tue Mar 4 00:20:42 2025 +0100
Commit:     Michael Niedermayer <michael at niedermayer.cc>
CommitDate: Tue Mar 4 00:20:42 2025 +0100

    web/security: Add more old CVE numbers
    
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

diff --git a/src/security b/src/security
index a8f0ee3..a8d1516 100644
--- a/src/security
+++ b/src/security
@@ -1929,6 +1929,7 @@ CVE-2015-3395, dfce316c12d867400fb132ff5094163e3d2634a3 / f7e1367f58263593e6cee3
 Fixes following vulnerabilities:
 </p>
 <pre>
+CVE-2014-7933, 490a3ebf36821b81f73e34ad3f554cb523dd2682
 CVE-2015-3417, e8714f6f93d1a32f4e4655209960afcf4c185214
 </pre>
 
@@ -2699,6 +2700,7 @@ Fixes following vulnerabilities:
 CVE-2013-2495, 3dbc0ff9c3e6f6e0d08ea3d42cb33761bae084ba
 CVE-2013-2496, e398990eb87785e20e065cd3f14d1dbb69df4392
 CVE-2013-0870, 14c8ee00ffd9d45e6e0c6f11a957ce7e56f7eb3a
+CVE-2012-2882, d894f74762bc95310ba23f804b7ba8dffc8f6646
 CVE-2012-5150, ae3d41636942cbc0236bad21ad06c65f4eb0f096
 CVE-2013-0894, 2c16bf2de07c68513072bf3cc96401d2c6291a3e
 </pre>
@@ -2851,6 +2853,8 @@ CVE-2013-0856, fd4f4923cce6a2cbf4f48640b4ac706e614a1594
 CVE-2013-0857, 2fbb37b51bbea891392ad357baf8f3dff00bac05
 CVE-2013-0858, 13451f5520ce6b0afde861b2285dda659f8d4fb4
 CVE-2013-0859, 6d1c5ea04af3e345232aa70c944de961061dab2d
+CVE-2012-6615, c83002a4f8042ccfa0688a9a18e8fa0369c1fda8
+CVE-2012-6616, 7d66bc7920240cc0e8df6c44b2d2cdbe4b228fbe
 CVE-2012-6617, cbe43e62c9ac7d4aefdc13476f6f691bd626525f
 CVE-2012-6618, 03847eb8259291b4ff1bd840bd779d0699d71f96
 </pre>
@@ -2950,8 +2954,8 @@ CVE-2013-0862, 8eda88868399de00806cf21a966d9660db4ae9b4 / 49b729d3af8464de431362
 Fixes following vulnerabilities:
 </p>
 <pre>
-commit 20c121c00747d6c3b0b0f98deeff021171b2ed74 / c83002a4f8042ccfa0688a9a18e8fa0369c1fda8
-commit 68e48ed72e0597ae61bc3e9e6e6d9edcb1a00073 / 7d66bc7920240cc0e8df6c44b2d2cdbe4b228fbe
+CVE-2012-6615, 20c121c00747d6c3b0b0f98deeff021171b2ed74 / c83002a4f8042ccfa0688a9a18e8fa0369c1fda8
+CVE-2012-6616, 68e48ed72e0597ae61bc3e9e6e6d9edcb1a00073 / 7d66bc7920240cc0e8df6c44b2d2cdbe4b228fbe
 CVE-2012-6617, 9929991da7b843e7d80154fcacc4e80579b86a2d / cbe43e62c9ac7d4aefdc13476f6f691bd626525f
 CVE-2012-6618, e74cd2f4706f71da5e9205003c1d8263b54ed3fb / 03847eb8259291b4ff1bd840bd779d0699d71f96
 </pre>
@@ -3123,10 +3127,10 @@ CVE-2013-7023, 20854f9bffd2130b6b987c439c2b4002aa177dd0 / f31011e9abfb2ae75bb32b
 Fixes following vulnerabilities:
 </p>
 <pre>
+CVE-2012-6615, c3d7c805bc9c1ed584e92649cd8fa8cbb7010967 / c83002a4f8042ccfa0688a9a18e8fa0369c1fda8
 CVE-2013-0868, b07c791252707c88f610daa668eae3ddc6fbccc7 / 0dfc01c2bbf4b71bb56201bc4a393321e15d1b31
                ba4b57e8024a9635b4eaf7f3cc08837b065bd4c9 / f67a0d115254461649470452058fa3c28c0df294
 CVE-2013-0894, e050af9a809bd4e223c89e280ebd94da0e1034b5 / 11dcecfcca0eca1a571792c4fa3c21fb2cfddddc
-c3d7c805bc9c1ed584e92649cd8fa8cbb7010967 / c83002a4f8042ccfa0688a9a18e8fa0369c1fda8
 </pre>
 
 <h3>0.10.6</h3>
@@ -3251,6 +3255,13 @@ Fix last quarter of CVE-2011-3893
 have no CVE number. Many of these issues can be exploited when a remote file is
 played back and a few are probable arbitrary code execution vulnerabilities</p>
 
+<h3>0.9</h3>
+<p>
+Fixes following vulnerabilities:
+</p>
+<pre>
+CVE-2011-4031, ba9a7e0d71bd34f8b89ae99322b62a310be163a6
+</pre>
 
 <h2>FFmpeg 0.8</h2>
 <h3>0.8.15</h3>
@@ -3339,6 +3350,7 @@ Several security issues that dont have CVE numbers.
 <pre>
 CVE-2010-3429, 6e73cef6e3b536fbccdb82bd9260440d836b3f03
 CVE-2010-4705, 366d919016a679d3955f6fe5278fa7ce4f47b81e
+CVE-2011-1931, 89f903b3d5ec38c9c5d90fba7e626fa0eda61a32
 </pre>
 
 <h2>FFmpeg 0.6</h2>

-----------------------------------------------------------------------

Summary of changes:
 src/security | 18 +++++++++++++++---
 1 file changed, 15 insertions(+), 3 deletions(-)


hooks/post-receive
--

More information about the ffmpeg-cvslog mailing list