Bug#700770: security-tracker: DSA-2624-1 vs. tracker

["Francesco Poli \(wintermute\)" <invernomuto@paranoici.org>]

Package: security-tracker
Severity: normal

Hello,
DSA-2624-1 [1] states that a number of vulnerabilities have been fixed
for squeeze in ffmpeg/4:0.5.10-1 .
The tracker seems to agree on its corresponding DSA page [2] and
on *some* of the corresponding CVE pages.
However, three vulnerabilities [3][4][5] seem to be still considered
unfixed for squeeze (security).

Is the DSA wrong?
Or is the tracker wrong?

Please clarify, and, in the latter case, please fix the tracker data.

Thanks for your time!

[1] https://lists.debian.org/debian-security-announce/2013/msg00029.html
[2] https://security-tracker.debian.org/tracker/DSA-2624-1
[3] https://security-tracker.debian.org/tracker/CVE-2012-2784
[4] https://security-tracker.debian.org/tracker/CVE-2012-2788
[5] https://security-tracker.debian.org/tracker/CVE-2012-2801