[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: wheezy update for libav

Hi Diego,

I've prepared the update, it should be uploaded soon.

> > I've had a look at the new CVEs reported for libav. I managed to
> > reproduce CVE-2016-98{21,22} (avconv crashes with segfault), but
> > cherry picking the fix[0,1,2] for these issues doesn't seem to fix
> > the problem.
> It would help me to know which problem is CVE 21 and which is 22 so
> that I can mark the fixing commits correctly in Git.

See https://marc.info/?l=oss-security&m=148090747301705&w=2

By the way, what about the patches I submitted here[0] ?


[0] https://lists.debian.org/debian-lts/2016/12/msg00058.html

             Hugo Lefeuvre (hle)    |    www.owl.eu.com
4096/ ACB7 B67F 197F 9B32 1533 431C AC90 AC3E C524 065E

Attachment: signature.asc
Description: PGP signature

Reply to: