[Bug 223626] security/vuxml: Document vulnerability in ffmpeg (CVE-2017-15186)

bugzilla-noreply at freebsd.org bugzilla-noreply at freebsd.org
Tue Nov 28 13:48:54 UTC 2017


--- Comment #4 from Jan Beich <jbeich at FreeBSD.org> ---
(In reply to Vladimir Krstulja from comment #3)
> * CVE-2017-15672
>   https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15672
> From what I see, 3.3.5 (that was committed to 2017Q4 today, r454971) includes the fix.
> Jan, can you confirm?

Yep. I see CVE-2017-15672 fix in 3.3.5.

> * CVE-2017-16840
>   https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16840
> New one, affects 3.4 apparently, no upstream release yet.

Probably affects 3.3.5 as well given the fix applies without conflicts.

You are receiving this mail because:
You are on the CC list for the bug.

More information about the freebsd-multimedia mailing list