[Git][security-tracker-team/security-tracker][master] Add new gpac issues

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ed0d8244 by Salvatore Bonaccorso at 2021-04-19T22:37:28+02:00
Add new gpac issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -540,23 +540,41 @@ CVE-2021-31264
 CVE-2021-31263
 	RESERVED
 CVE-2021-31262 (The AV1_DuplicateConfig function in GPAC 1.0.1 allows attackers to cau ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/commit/b2eab95e07cb5819375a50358d4806a8813b6e50
+	NOTE: https://github.com/gpac/gpac/issues/1738
 CVE-2021-31261 (The gf_hinter_track_new function in GPAC 1.0.1 allows attackers to rea ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/commit/cd3738dea038dbd12e603ad48cd7373ae0440f65
+	NOTE: https://github.com/gpac/gpac/issues/1737
 CVE-2021-31260 (The MergeTrack function in GPAC 1.0.1 allows attackers to cause a deni ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/commit/df8fffd839fe5ae9acd82d26fd48280a397411d9
+	NOTE: https://github.com/gpac/gpac/issues/1736
 CVE-2021-31259 (The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allo ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/commit/3b84ffcbacf144ce35650df958432f472b6483f8
+	NOTE: https://github.com/gpac/gpac/issues/1735
 CVE-2021-31258 (The gf_isom_set_extraction_slc function in GPAC 1.0.1 allows attackers ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/commit/ebfa346eff05049718f7b80041093b4c5581c24e
+	NOTE: https://github.com/gpac/gpac/issues/1706
 CVE-2021-31257 (The HintFile function in GPAC 1.0.1 allows attackers to cause a denial ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/commit/87afe070cd6866df7fe80f11b26ef75161de85e0
+	NOTE: https://github.com/gpac/gpac/issues/1734
 CVE-2021-31256 (Memory leak in the stbl_GetSampleInfos function in MP4Box in GPAC 1.0. ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/commit/2da2f68bffd51d89b1d272d22aa8cc023c1c066e
+	NOTE: https://github.com/gpac/gpac/issues/1705
 CVE-2021-31255 (Buffer overflow in the abst_box_read function in MP4Box in GPAC 1.0.1  ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/commit/758135e91e623d7dfe7f6aaad7aeb3f791b7a4e5
+	NOTE: https://github.com/gpac/gpac/issues/1733
 CVE-2021-31254 (Buffer overflow in the tenc_box_read function in MP4Box in GPAC 1.0.1  ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/commit/8986422c21fbd9a7bf6561cae65aae42077447e8
+	NOTE: https://github.com/gpac/gpac/issues/1703
 CVE-2021-31253
 	RESERVED
 CVE-2021-31252



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ed0d8244478b2e7b855ef89a48af1c132dd6d962

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ed0d8244478b2e7b855ef89a48af1c132dd6d962
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210419/7c2c0b14/attachment.htm>