[Git][security-tracker-team/security-tracker][master] CVE-2020-6630,CVE-2020-6631/gpac: jessie triage

Sylvain Beucler beuc at debian.org
Mon Jan 20 12:33:35 GMT 2020



Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
baf11202 by Sylvain Beucler at 2020-01-20T13:30:25+01:00
CVE-2020-6630,CVE-2020-6631/gpac: jessie triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1303,11 +1303,13 @@ CVE-2020-6632 (In PrestaShop 1.7.6.2, XSS can occur during addition or removal o
 	NOT-FOR-US: PrestaShop
 CVE-2020-6631 (An issue was discovered in GPAC version 0.8.0. There is a NULL pointer ...)
 	- gpac <unfixed>
+	[jessie] - gpac <postponed> (Minor issue, clean crash, MP42TS not shipped, incomplete patch)
 	NOTE: https://github.com/gpac/gpac/issues/1378
 	NOTE: https://github.com/gpac/gpac/commit/c7e46e948ebe2d4a532539c7e714cdf655b84521
 	NOTE: fix considered "ugly" by upstream and introduces abort(3)-based DoS
 CVE-2020-6630 (An issue was discovered in GPAC version 0.8.0. There is a NULL pointer ...)
 	- gpac <unfixed>
+	[jessie] - gpac <postponed> (Minor issue, clean crash, MP42TS not shipped, incomplete patch)
 	NOTE: https://github.com/gpac/gpac/issues/1377
 	NOTE: https://github.com/gpac/gpac/commit/c7e46e948ebe2d4a532539c7e714cdf655b84521
 	NOTE: fix considered "ugly" by upstream and introduces abort(3)-based DoS



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/baf112021aa00f296f8b027eec0ddf13467f1827

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/baf112021aa00f296f8b027eec0ddf13467f1827
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200120/fb2a276a/attachment.html>


More information about the debian-security-tracker-commits mailing list