Ubuntu CVE Tracker

Merge ~nickgalanis/ubuntu-cve-tracker:nick_branch into ubuntu-cve-tracker:master

  1. Git
  2. lp:~nickgalanis/ubuntu-cve-tracker
  3. nick_branch
  4. Merge into master
Proposed by Nick Galanis
Status: Merged
Merged at revision: c2e1d5678279ed4f529ba3f01f471dbb670f12a0
Proposed branch: ~nickgalanis/ubuntu-cve-tracker:nick_branch
Merge into: ubuntu-cve-tracker:master
Diff against target: 65 lines (+11/-26)
2 files modified
active/CVE-2020-14212 (+2/-2)
active/CVE-2023-41915 (+9/-24)
Reviewer Review Type Date Requested Status
Eduardo Barretto Approve
Review via email: mp+453060@code.launchpad.net

Commit message

change status for a wrongfully "needed" cve for ffmpeg

To post a comment you must log in.
Revision history for this message
Eduardo Barretto (ebarretto) wrote :

lgtm, thanks!

review: Approve

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
1diff --git a/active/CVE-2020-14212 b/active/CVE-2020-14212
2index c626d66..5d71014 100644
3--- a/active/CVE-2020-14212
4+++ b/active/CVE-2020-14212
5@@ -31,8 +31,8 @@ esm-apps/xenial_ffmpeg: not-affected (code not present)
6 bionic_ffmpeg: not-affected (code not present)
7 esm-apps/bionic_ffmpeg: not-affected (code not present)
8 eoan_ffmpeg: ignored (end of life)
9-focal_ffmpeg: needed
10-esm-apps/focal_ffmpeg: needed
11+focal_ffmpeg: not-affected (7:4.2.7-0ubuntu0.1)
12+esm-apps/focal_ffmpeg: not-affected (7:4.2.7-0ubuntu0.1)
13 groovy_ffmpeg: not-affected (7:4.3.1-1ubuntu1)
14 hirsute_ffmpeg: not-affected (7:4.3.1-1ubuntu1)
15 impish_ffmpeg: not-affected (7:4.3.1-1ubuntu1)
16diff --git a/active/CVE-2023-41915 b/active/CVE-2023-41915
17index 1a14d87..ac31a7a 100644
18--- a/active/CVE-2023-41915
19+++ b/active/CVE-2023-41915
20@@ -18,36 +18,21 @@ Bugs:
21 Priority: high
22 arbitrary file write, in some cases under UID 0
23 Discovered-by: François Diakhate
24-Assigned-to:
25+Assigned-to: nickgalanis
26 CVSS:
27 nvd: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H [8.1 HIGH]
28
29-Patches_openmpi:
30-upstream_openmpi: needs-triage
31-trusty_openmpi: ignored (end of standard support)
32-trusty/esm_openmpi: needs-triage
33-xenial_openmpi: ignored (end of standard support)
34-esm-apps/xenial_openmpi: needs-triage
35-bionic_openmpi: ignored (end of standard support)
36-esm-apps/bionic_openmpi: needs-triage
37-focal_openmpi: needs-triage
38-esm-apps/focal_openmpi: needs-triage
39-jammy_openmpi: needs-triage
40-esm-apps/jammy_openmpi: needs-triage
41-lunar_openmpi: needs-triage
42-devel_openmpi: needs-triage
43-
44 Patches_pmix:
45 upstream: https://github.com/openpmix/openpmix/commit/da036933c2795c1f40d0835e15f17e204e4daf0f (v4.2.6)
46 upstream: https://github.com/openpmix/openpmix/commit/0bf9801a3017eb6ca411e158da39570ccb998c17 (v5.0.1)
47-upstream_pmix: needs-triage
48+upstream_pmix: released (5.0.1)
49 trusty_pmix: ignored (end of standard support)
50 xenial_pmix: ignored (end of standard support)
51 bionic_pmix: ignored (end of standard support)
52-esm-apps/bionic_pmix: needs-triage
53-focal_pmix: needs-triage
54-esm-apps/focal_pmix: needs-triage
55-jammy_pmix: needs-triage
56-esm-apps/jammy_pmix: needs-triage
57-lunar_pmix: needs-triage
58-devel_pmix: needs-triage
59+esm-apps/bionic_pmix: needed
60+focal_pmix: needed
61+esm-apps/focal_pmix: needed
62+jammy_pmix: needed
63+esm-apps/jammy_pmix: needed
64+lunar_pmix: needed
65+devel_pmix: needed

Subscribers

People subscribed via source and target branches