[Git][security-tracker-team/security-tracker][master] Add some more gpac issues

Salvatore Bonaccorso carnil at debian.org
Tue Apr 20 21:26:10 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bff3ca73 by Salvatore Bonaccorso at 2021-04-20T22:25:47+02:00
Add some more gpac issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2816,7 +2816,9 @@ CVE-2021-30201
 CVE-2021-30200
 	RESERVED
 CVE-2021-30199 (In filters/reframe_latm.c in GPAC 1.0.1 there is a Null Pointer Derefe ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/commit/b2db2f99b4c30f96e17b9a14537c776da6cb5dca
+	NOTE: https://github.com/gpac/gpac/issues/1728
 CVE-2021-30198
 	RESERVED
 CVE-2021-30197
@@ -3269,13 +3271,19 @@ CVE-2021-30024
 CVE-2021-30023
 	RESERVED
 CVE-2021-30022 (There is a integer overflow in media_tools/av_parsers.c in the gf_avc_ ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/commit/51cdb67ff7c5f1242ac58c5aa603ceaf1793b788
+	NOTE: https://github.com/gpac/gpac/issues/1720
 CVE-2021-30021
 	RESERVED
 CVE-2021-30020 (In the function gf_hevc_read_pps_bs_internal function in media_tools/a ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/commit/51cdb67ff7c5f1242ac58c5aa603ceaf1793b788
+	NOTE: https://github.com/gpac/gpac/issues/1722
 CVE-2021-30019 (In the adts_dmx_process function in filters/reframe_adts.c in GPAC 1.0 ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/commit/22774aa9e62f586319c8f107f5bae950fed900bc
+	NOTE: https://github.com/gpac/gpac/issues/1723
 CVE-2021-30018
 	RESERVED
 CVE-2021-30017
@@ -3283,9 +3291,13 @@ CVE-2021-30017
 CVE-2021-30016
 	RESERVED
 CVE-2021-30015 (There is a Null Pointer Dereference in function filter_core/filter_pck ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/commit/13dad7d5ef74ca2e6fe4010f5b03eb12e9bbe0ec
+	NOTE: https://github.com/gpac/gpac/issues/1719
 CVE-2021-30014 (There is a integer overflow in media_tools/av_parsers.c in the hevc_pa ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/commit/51cdb67ff7c5f1242ac58c5aa603ceaf1793b788
+	NOTE: https://github.com/gpac/gpac/issues/1721
 CVE-2021-30013
 	RESERVED
 CVE-2021-30012
@@ -4950,7 +4962,9 @@ CVE-2021-29281
 CVE-2021-29280
 	RESERVED
 CVE-2021-29279 (There is a integer overflow in function filter_core/filter_props.c:gf_ ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/commit/da69ad1f970a7e17c865eaec9af98cc84df10d5b
+	NOTE: https://github.com/gpac/gpac/issues/1718
 CVE-2021-29278
 	RESERVED
 CVE-2021-29277



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bff3ca73950dbc3dae3194beedbcdff6bf25e9d3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bff3ca73950dbc3dae3194beedbcdff6bf25e9d3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210420/0997afe4/attachment.htm>

More information about the debian-security-tracker-commits mailing list