[Git][security-tracker-team/security-tracker][master] Add CVE-2021-45258/gpac

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Dec 22 20:51:13 GMT 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
799d95f3 by Salvatore Bonaccorso at 2021-12-22T21:50:49+01:00
Add CVE-2021-45258/gpac

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -893,7 +893,9 @@ CVE-2021-45259 (An Invalid pointer reference vulnerability exists in gpac 1.1.0
 	NOTE: https://github.com/gpac/gpac/issues/1986
 	NOTE: https://github.com/gpac/gpac/commit/654c796482c2609aa736315f9273d6c5912e0a29
 CVE-2021-45258 (A stack overflow vulnerability exists in gpac 1.1.0 via the gf_bifs_de ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/issues/1970
+	NOTE: https://github.com/gpac/gpac/commit/47a26a32c9a2cd630c48517c3e6ab2fa5f6a26ad
 CVE-2021-45257 (An infinite loop vulnerability exists in nasm 2.16rc0 via the gpaste_t ...)
 	- nasm <unfixed> (unimportant)
 	NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392790



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/799d95f3dba24933304f06450b3a2e75e5f75b94

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/799d95f3dba24933304f06450b3a2e75e5f75b94
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211222/209de3d8/attachment.htm>


More information about the debian-security-tracker-commits mailing list