[Git][security-tracker-team/security-tracker][master] Add CVE-2021-45293/binaryen
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Dec 21 21:25:43 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b4d0b895 by Salvatore Bonaccorso at 2021-12-21T22:25:07+01:00
Add CVE-2021-45293/binaryen
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -523,7 +523,11 @@ CVE-2021-45295
CVE-2021-45294
RESERVED
CVE-2021-45293 (A Denial of Service vulnerability exists in Binaryen 103 due to an Inv ...)
- TODO: check
+ - binaryen 104-1 (unimportant)
+ NOTE: https://github.com/WebAssembly/binaryen/issues/4384
+ NOTE: https://github.com/WebAssembly/binaryen/pull/4388
+ NOTE: https://github.com/WebAssembly/binaryen/commit/b1f6298ed8756bdc3336429c04b92ba58d000b49 (version_104)
+ NOTE: Crash in CLI tool, no security impact
CVE-2021-45292 (The gf_isom_hint_rtp_read function in GPAC 1.0.1 allows attackers to c ...)
TODO: check
CVE-2021-45291 (The gf_dump_setup function in GPAC 1.0.1 allows malicoius users to cau ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b4d0b89529c7afc5563992c2e3a9bc7a11cdd92c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b4d0b89529c7afc5563992c2e3a9bc7a11cdd92c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211221/748bf2fc/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list