On Thu, Apr 07, 2011 at 12:11:53AM +0200, Arne Wichmann wrote: > Hi, > > #611495, to which the security-tracker page refers, is closed. The CVE says > it applies to 0.6.1 and earlier - the version is now 0.6.2 . But the > security tracker still lists ffmpeg as vulnerable. Did I miss something? > > (Reply-To set as I am not on the list at the moment) Lenny is still unfixed and it's a different source package (ffmpeg-debian) Cheers, Moritz