[Git][security-tracker-team/security-tracker][master] automatic update

Sun Oct 24 21:10:25 BST 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
83d106e4 by security tracker role at 2021-10-24T20:10:16+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -26264,14 +26264,17 @@ CVE-2021-32280 (An issue was discovered in fig2dev before 3.2.8.. A NULL pointer
 CVE-2021-32279
 	RESERVED
 CVE-2021-32278 (An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflo ...)
+	{DLA-2792-1}
 	- faad2 2.10.0-1
 	NOTE: https://github.com/knik0/faad2/issues/62
 	NOTE: https://github.com/knik0/faad2/commit/e19a5e491354e0e4664d02b796dacee28fb2521e (2_10_0)
 CVE-2021-32277 (An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflo ...)
+	{DLA-2792-1}
 	- faad2 2.10.0-1
 	NOTE: https://github.com/knik0/faad2/issues/59
 	NOTE: https://github.com/knik0/faad2/commit/c78251b2b5d41ea840fd61ab9502b3d3036bd747 (2_10_0)
 CVE-2021-32276 (An issue was discovered in faad2 through 2.10.0. A NULL pointer derefe ...)
+	{DLA-2792-1}
 	- faad2 2.10.0-1
 	NOTE: https://github.com/knik0/faad2/issues/58
 	NOTE: https://github.com/knik0/faad2/commit/b58840121d1827b4b6c7617e2431589af1776ddc (2_10_0)
@@ -26280,6 +26283,7 @@ CVE-2021-32275 (An issue was discovered in faust through v2.30.5. A NULL pointer
 	NOTE: https://github.com/grame-cncm/faust/issues/482
 	NOTE: Negligible security impact
 CVE-2021-32274 (An issue was discovered in faad2 through 2.10.0. A heap-buffer-overflo ...)
+	{DLA-2792-1}
 	- faad2 2.10.0-1
 	NOTE: https://github.com/knik0/faad2/issues/60
 	NOTE: https://github.com/knik0/faad2/commit/c78251b2b5d41ea840fd61ab9502b3d3036bd747 (2_10_0)
@@ -176631,7 +176635,7 @@ CVE-2019-6958 (A recently discovered security vulnerability affects all Bosch Vi
 CVE-2019-6957 (A recently discovered security vulnerability affects all Bosch Video M ...)
 	NOT-FOR-US: Bosch
 CVE-2019-6956 (An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2 ...)
-	{DLA-1899-1}
+	{DLA-2792-1 DLA-1899-1}
 	- faad2 2.8.8-3.1 (bug #914641)
 	[buster] - faad2 <no-dsa> (Minor issue)
 	NOTE: https://sourceforge.net/p/faac/bugs/240/
@@ -186131,7 +186135,7 @@ CVE-2018-20361 (An invalid memory address dereference was discovered in the hf_a
 	NOTE: https://github.com/knik0/faad2/issues/30
 	NOTE: https://github.com/knik0/faad2/commit/6b4a7cde30f2e2c
 CVE-2018-20360 (An invalid memory address dereference was discovered in the sbr_proces ...)
-	{DLA-1899-1}
+	{DLA-2792-1 DLA-1899-1}
 	- faad2 2.8.8-3.1 (low)
 	[buster] - faad2 <no-dsa> (Minor issue)
 	NOTE: https://github.com/knik0/faad2/issues/32
@@ -186738,7 +186742,7 @@ CVE-2018-20200 (** DISPUTED ** CertificatePinner.java in OkHttp 3.x through 3.12
 	NOTE: https://github.com/square/okhttp/issues/4967
 	NOTE: No practicable security imapacting relevance
 CVE-2018-20199 (A NULL pointer dereference was discovered in ifilter_bank of libfaad/f ...)
-	{DLA-1899-1}
+	{DLA-2792-1 DLA-1899-1}
 	- faad2 2.8.8-3.1 (low)
 	[buster] - faad2 <no-dsa> (Minor issue)
 	NOTE: https://github.com/knik0/faad2/issues/24



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83d106e4b052c7aebcff205ddaa39ddd8715bd4c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83d106e4b052c7aebcff205ddaa39ddd8715bd4c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211024/bc24ff2e/attachment.htm>
