[Secure-testing-team] CVE-2011-{3362, 3504, 3973, 3974} for {old, }stable
Yves-Alexis Perez
corsac at debian.org
Tue Nov 1 19:06:12 UTC 2011
Hey,
those CVEs are marked as removed (ffmpeg, squeeze) and end-of-life
(ffmpeg, lenny). I understand that for Lenny we don't support ffmpeg
that long, but I'm not sure about the Squeeze status.
And on the tracker website (though I'm not sure how much we can trust it
right now) this appear as fixed for Lenny (and vulnerable for Wheezy).
If it's end-of-life, I'm not sure it should appear as fixed.
Is there someone working on the update for Squeeze? It seems that
there's no RT ticket so I'll start by this, I guess.
Regards,
--
Yves-Alexis
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20111101/503d4f26/attachment.pgp>
More information about the Secure-testing-team
mailing list