Summary: | media-video/ffmpeg < 0.4.9_p20090201: type conversion vulnerability in libavformat/4xm.c (CVE-2009-0385) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Matti Bickel (RETIRED) <mabi> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | media-video |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.trapkit.de/advisories/TKADV2009-004.txt | ||
Whiteboard: | B2 [glsa] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 257380, 257381 |
Description
Matti Bickel (RETIRED)
2009-02-01 14:30:42 UTC
media-video, do you pull updates from trunk and can provide an ebuild? Or do we wait for the ffmpeg folks for a release? (In reply to comment #1) > media-video, do you pull updates from trunk and can provide an ebuild? Or do we > wait for the ffmpeg folks for a release? A release is expected around the end of february; I'll make a new snapshot rev 16916, aka 0.4.9_p20090201 is in the tree; don't forget all the packages bundling ffmpeg too thanks for the quick response. target keywords for: media-video/ffmpeg-0.4.9_p20090201 alpha, amd64, arm, hppa, ia64, ppc, ppc64, sparc, x86, ~x86-fbsd Please do, we have 10 days maximum for a glsa, so a little testing on this complex piece would not hurt. Stable on alpha. # ChangeLog for media-video/ffmpeg # Copyright 1999-2009 Gentoo Foundation; Distributed under the GPL v2 # $Header: /var/cvsroot/gentoo-x86/media-video/ffmpeg/ChangeLog,v 1.264 2009/02/01 16:23:10 aballier Exp $ *ffmpeg-0.4.9_p20090201 (01 Feb 2009) 01 Feb 2009; Alexis Ballier <aballier@gentoo.org> +ffmpeg-0.4.9_p20090201.ebuild: new snapshot, bug #257217 Stable on alpha. Again (that's what you get for being quick). ppc64 done amd64 stable x86 stable Stable for HPPA. ia64/sparc stable ppc stable GLSA 200903-33 |