[Git][security-tracker-team/security-tracker][master] Add CVE-2019-9928/gst-plugins-base*
Salvatore Bonaccorso
carnil at debian.org
Thu Apr 25 20:54:20 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7cab7faa by Salvatore Bonaccorso at 2019-04-25T19:53:25Z
Add CVE-2019-9928/gst-plugins-base*
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3729,7 +3729,12 @@ CVE-2019-9930
CVE-2019-9929
RESERVED
CVE-2019-9928 (GStreamer before 1.16.0 has a heap-based buffer overflow in the RTSP c ...)
- TODO: check
+ [experimental] - gst-plugins-base1.0 1.15.90-1
+ - gst-plugins-base1.0 <unfixed>
+ - gst-plugins-base0.10 <removed>
+ NOTE: https://gstreamer.freedesktop.org/security/sa-2019-0001.html
+ NOTE: https://gitlab.freedesktop.org/gstreamer/gst-plugins-base/merge_requests/157
+ NOTE: https://gitlab.freedesktop.org/gstreamer/gst-plugins-base/commit/f672277509705c4034bc92a141eefee4524d15aa (1.15.90)
CVE-2019-9927 (Caret before 2019-02-22 allows Remote Code Execution. ...)
NOT-FOR-US: Caret editor
CVE-2019-9926
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7cab7faad80408fa217712f77a9e9d4f6b682ca6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7cab7faad80408fa217712f77a9e9d4f6b682ca6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190425/d98b2ff8/attachment.html>
More information about the debian-security-tracker-commits
mailing list