[Git][security-tracker-team/security-tracker][master] Add CVE-2021-45290/binaryen
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Dec 21 21:36:00 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
48954c2d by Salvatore Bonaccorso at 2021-12-21T22:35:18+01:00
Add CVE-2021-45290/binaryen
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -537,7 +537,11 @@ CVE-2021-45291 (The gf_dump_setup function in GPAC 1.0.1 allows malicoius users
NOTE: https://github.com/gpac/gpac/issues/1955
NOTE: https://github.com/gpac/gpac/commit/a07c64979af592aad56bc175157b7397e43fa9cc
CVE-2021-45290 (A Denial of Service vulnerability exits in Binaryen 103 due to an asse ...)
- TODO: check
+ - binaryen 104-1 (unimportant)
+ NOTE: https://github.com/WebAssembly/binaryen/issues/4383
+ NOTE: https://github.com/WebAssembly/binaryen/pull/4389
+ NOTE: https://github.com/WebAssembly/binaryen/commit/62d83d5fcad015ce52f0f3122eab9df1c629cafb (version_104)
+ NOTE: Crash in CLI tool, no security impact
CVE-2021-45289 (A vulnerability exists in GPAC 1.0.1 due to an omission of security-re ...)
TODO: check
CVE-2021-45288 (A Double Free vulnerability exists in filedump.c in GPAC 1.0.1, which ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48954c2dcb7e46b0ee07d8f88e2a6353a0976ed4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48954c2dcb7e46b0ee07d8f88e2a6353a0976ed4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211221/757f7806/attachment.htm>
More information about the debian-security-tracker-commits
mailing list