[Git][security-tracker-team/security-tracker][master] Add CVE-2020-22352/gpac - already fixed
Neil Williams (@codehelp)
codehelp at debian.org
Wed Sep 1 13:12:35 BST 2021
Neil Williams pushed to branch master at Debian Security Tracker / security-tracker
Commits:
118dabe8 by Neil Williams at 2021-09-01T13:11:10+01:00
Add CVE-2020-22352/gpac - already fixed
Vulnerable code was added, patched and subsequently removed
between the versions in buster and stretch and the 1.0.1 git tag
used in the version in unstable, bookworm and bullseye.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -73670,7 +73670,12 @@ CVE-2020-22354
CVE-2020-22353
RESERVED
CVE-2020-22352 (The gf_dash_segmenter_probe_input function in GPAC v0.8 allows attacke ...)
- TODO: check
+ - gpac 1.0.1+dfsg1-2
+ [buster] - gpac <not-affected> (Vulnerable code added later)
+ [stretch] - gpac <not-affected> (Vulnerable code added later)
+ NOTE: https://github.com/gpac/gpac/issues/1423
+ NOTE: https://github.com/gpac/gpac/commit/e90526f3d2ec0dee4cddc5244eb115668f10341f
+ NOTE: Vulnerable code was subsequently removed upstream.
CVE-2020-22351
RESERVED
CVE-2020-22350
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/118dabe861533334dc9663fb5a406f0ae65d8aa0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/118dabe861533334dc9663fb5a406f0ae65d8aa0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210901/db37c20e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list