[Git][security-tracker-team/security-tracker][master] Track fixed gpac issues via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue May 25 05:54:14 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
54007340 by Salvatore Bonaccorso at 2021-05-25T06:53:50+02:00
Track fixed gpac issues via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5210,15 +5210,15 @@ CVE-2021-31264
CVE-2021-31263
RESERVED
CVE-2021-31262 (The AV1_DuplicateConfig function in GPAC 1.0.1 allows attackers to cau ...)
- - gpac <unfixed> (bug #987280)
+ - gpac 1.0.1+dfsg1-4 (bug #987280)
NOTE: https://github.com/gpac/gpac/commit/b2eab95e07cb5819375a50358d4806a8813b6e50
NOTE: https://github.com/gpac/gpac/issues/1738
CVE-2021-31261 (The gf_hinter_track_new function in GPAC 1.0.1 allows attackers to rea ...)
- - gpac <unfixed> (bug #987280)
+ - gpac 1.0.1+dfsg1-4 (bug #987280)
NOTE: https://github.com/gpac/gpac/commit/cd3738dea038dbd12e603ad48cd7373ae0440f65
NOTE: https://github.com/gpac/gpac/issues/1737
CVE-2021-31260 (The MergeTrack function in GPAC 1.0.1 allows attackers to cause a deni ...)
- - gpac <unfixed> (bug #987280)
+ - gpac 1.0.1+dfsg1-4 (bug #987280)
NOTE: https://github.com/gpac/gpac/commit/df8fffd839fe5ae9acd82d26fd48280a397411d9
NOTE: https://github.com/gpac/gpac/issues/1736
CVE-2021-31259 (The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allo ...)
@@ -5227,19 +5227,19 @@ CVE-2021-31259 (The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.
NOTE: https://github.com/gpac/gpac/issues/1735
NOTE: Introduced in https://github.com/gpac/gpac/commit/f966d85ee940b0a19dbbe972bc9ff042a98d7264 (after v1.0.1)
CVE-2021-31258 (The gf_isom_set_extraction_slc function in GPAC 1.0.1 allows attackers ...)
- - gpac <unfixed> (bug #987280)
+ - gpac 1.0.1+dfsg1-4 (bug #987280)
NOTE: https://github.com/gpac/gpac/commit/ebfa346eff05049718f7b80041093b4c5581c24e
NOTE: https://github.com/gpac/gpac/issues/1706
CVE-2021-31257 (The HintFile function in GPAC 1.0.1 allows attackers to cause a denial ...)
- - gpac <unfixed> (bug #987280)
+ - gpac 1.0.1+dfsg1-4 (bug #987280)
NOTE: https://github.com/gpac/gpac/commit/87afe070cd6866df7fe80f11b26ef75161de85e0
NOTE: https://github.com/gpac/gpac/issues/1734
CVE-2021-31256 (Memory leak in the stbl_GetSampleInfos function in MP4Box in GPAC 1.0. ...)
- - gpac <unfixed> (bug #987280)
+ - gpac 1.0.1+dfsg1-4 (bug #987280)
NOTE: https://github.com/gpac/gpac/commit/2da2f68bffd51d89b1d272d22aa8cc023c1c066e
NOTE: https://github.com/gpac/gpac/issues/1705
CVE-2021-31255 (Buffer overflow in the abst_box_read function in MP4Box in GPAC 1.0.1 ...)
- - gpac <unfixed> (bug #987280)
+ - gpac 1.0.1+dfsg1-4 (bug #987280)
NOTE: https://github.com/gpac/gpac/commit/758135e91e623d7dfe7f6aaad7aeb3f791b7a4e5
NOTE: https://github.com/gpac/gpac/issues/1733
CVE-2021-31254 (Buffer overflow in the tenc_box_read function in MP4Box in GPAC 1.0.1 ...)
@@ -7635,7 +7635,7 @@ CVE-2021-30201
CVE-2021-30200
RESERVED
CVE-2021-30199 (In filters/reframe_latm.c in GPAC 1.0.1 there is a Null Pointer Derefe ...)
- - gpac <unfixed> (bug #987323)
+ - gpac 1.0.1+dfsg1-4 (bug #987323)
NOTE: https://github.com/gpac/gpac/commit/b2db2f99b4c30f96e17b9a14537c776da6cb5dca
NOTE: https://github.com/gpac/gpac/issues/1728
CVE-2021-30198
@@ -8111,17 +8111,17 @@ CVE-2021-30024
CVE-2021-30023
RESERVED
CVE-2021-30022 (There is a integer overflow in media_tools/av_parsers.c in the gf_avc_ ...)
- - gpac <unfixed> (bug #987323)
+ - gpac 1.0.1+dfsg1-4 (bug #987323)
NOTE: https://github.com/gpac/gpac/commit/51cdb67ff7c5f1242ac58c5aa603ceaf1793b788
NOTE: https://github.com/gpac/gpac/issues/1720
CVE-2021-30021
RESERVED
CVE-2021-30020 (In the function gf_hevc_read_pps_bs_internal function in media_tools/a ...)
- - gpac <unfixed> (bug #987323)
+ - gpac 1.0.1+dfsg1-4 (bug #987323)
NOTE: https://github.com/gpac/gpac/commit/51cdb67ff7c5f1242ac58c5aa603ceaf1793b788
NOTE: https://github.com/gpac/gpac/issues/1722
CVE-2021-30019 (In the adts_dmx_process function in filters/reframe_adts.c in GPAC 1.0 ...)
- - gpac <unfixed> (bug #987323)
+ - gpac 1.0.1+dfsg1-4 (bug #987323)
NOTE: https://github.com/gpac/gpac/commit/22774aa9e62f586319c8f107f5bae950fed900bc
NOTE: https://github.com/gpac/gpac/issues/1723
CVE-2021-30018
@@ -8131,11 +8131,11 @@ CVE-2021-30017
CVE-2021-30016
RESERVED
CVE-2021-30015 (There is a Null Pointer Dereference in function filter_core/filter_pck ...)
- - gpac <unfixed> (bug #987323)
+ - gpac 1.0.1+dfsg1-4 (bug #987323)
NOTE: https://github.com/gpac/gpac/commit/13dad7d5ef74ca2e6fe4010f5b03eb12e9bbe0ec
NOTE: https://github.com/gpac/gpac/issues/1719
CVE-2021-30014 (There is a integer overflow in media_tools/av_parsers.c in the hevc_pa ...)
- - gpac <unfixed> (bug #987323)
+ - gpac 1.0.1+dfsg1-4 (bug #987323)
NOTE: https://github.com/gpac/gpac/commit/51cdb67ff7c5f1242ac58c5aa603ceaf1793b788
NOTE: https://github.com/gpac/gpac/issues/1721
CVE-2021-30013
@@ -9947,7 +9947,7 @@ CVE-2021-29281
CVE-2021-29280
RESERVED
CVE-2021-29279 (There is a integer overflow in function filter_core/filter_props.c:gf_ ...)
- - gpac <unfixed> (bug #987323)
+ - gpac 1.0.1+dfsg1-4 (bug #987323)
NOTE: https://github.com/gpac/gpac/commit/da69ad1f970a7e17c865eaec9af98cc84df10d5b
NOTE: https://github.com/gpac/gpac/issues/1718
CVE-2021-29278
@@ -12205,7 +12205,7 @@ CVE-2021-28302 (A stack overflow in pupnp 1.16.1 can cause the denial of service
CVE-2021-28301
RESERVED
CVE-2021-28300 (NULL Pointer Dereference in the "isomedia/track.c" module's "MergeTrac ...)
- - gpac <unfixed> (bug #987020)
+ - gpac 1.0.1+dfsg1-4 (bug #987020)
[stretch] - gpac <postponed> (Minor issue; can be fixed in next update)
NOTE: https://github.com/gpac/gpac/issues/1702
NOTE: https://github.com/gpac/gpac/commit/c4a5109dad73abe25ad12d8d529a728ae98d78ca
@@ -28330,11 +28330,11 @@ CVE-2020-35984
CVE-2020-35983
RESERVED
CVE-2020-35982 (An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an i ...)
- - gpac <unfixed> (bug #987374)
+ - gpac 1.0.1+dfsg1-4 (bug #987374)
NOTE: https://github.com/gpac/gpac/commit/a4eb327049132359cae54b59faec9e2f14c5a619
NOTE: https://github.com/gpac/gpac/issues/1660
CVE-2020-35981 (An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an i ...)
- - gpac <unfixed> (bug #987374)
+ - gpac 1.0.1+dfsg1-4 (bug #987374)
NOTE: https://github.com/gpac/gpac/commit/dae9900580a8888969481cd72035408091edb11b
NOTE: https://github.com/gpac/gpac/issues/1659
CVE-2020-35980 (An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is a us ...)
@@ -28342,7 +28342,7 @@ CVE-2020-35980 (An issue was discovered in GPAC version 0.8.0 and 1.0.1. There i
NOTE: https://github.com/gpac/gpac/commit/5aba27604d957e960d8069d85ccaf868f8a7b07a
NOTE: https://github.com/gpac/gpac/issues/1661
CVE-2020-35979 (An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is heap ...)
- - gpac <unfixed> (bug #987374)
+ - gpac 1.0.1+dfsg1-4 (bug #987374)
NOTE: https://github.com/gpac/gpac/commit/b15020f54aff24aaeb64b80771472be8e64a7adc
NOTE: https://github.com/gpac/gpac/issues/1662
CVE-2020-35978
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/54007340847901bae16b473e3b21bedb66f8e317
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/54007340847901bae16b473e3b21bedb66f8e317
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210525/e6e7624d/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list