[Git][security-tracker-team/security-tracker][master] Track fixed version for gpac via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Sep 2 05:26:15 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
dce1bd7d by Salvatore Bonaccorso at 2021-09-02T06:24:52+02:00
Track fixed version for gpac via unstable
The maintainer listed in the 1.0.1+dfsg1-5 some other CVEs which we did
mark sas not-affected as code introduced later than what was present in
unstable actually. Those though might need to be rechecked if the
maintainer disagrees.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -44073,7 +44073,7 @@ CVE-2021-21862 (Multiple exploitable integer truncation vulnerabilities exist wi
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21861 (An exploitable integer truncation vulnerability exists within the MPEG ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1298
@@ -44081,7 +44081,7 @@ CVE-2021-21861 (An exploitable integer truncation vulnerability exists within th
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21860 (An exploitable integer truncation vulnerability exists within the MPEG ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1298
@@ -44089,7 +44089,7 @@ CVE-2021-21860 (An exploitable integer truncation vulnerability exists within th
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21859 (An exploitable integer truncation vulnerability exists within the MPEG ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1298
@@ -44097,7 +44097,7 @@ CVE-2021-21859 (An exploitable integer truncation vulnerability exists within th
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21858 (Multiple exploitable integer overflow vulnerabilities exist within the ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1299
@@ -44105,7 +44105,7 @@ CVE-2021-21858 (Multiple exploitable integer overflow vulnerabilities exist with
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21857 (Multiple exploitable integer overflow vulnerabilities exist within the ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1299
@@ -44119,7 +44119,7 @@ CVE-2021-21856 (Multiple exploitable integer overflow vulnerabilities exist with
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21855 (Multiple exploitable integer overflow vulnerabilities exist within the ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1299
@@ -44127,7 +44127,7 @@ CVE-2021-21855 (Multiple exploitable integer overflow vulnerabilities exist with
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21854 (Multiple exploitable integer overflow vulnerabilities exist within the ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1299
@@ -44135,14 +44135,14 @@ CVE-2021-21854 (Multiple exploitable integer overflow vulnerabilities exist with
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21853 (Multiple exploitable integer overflow vulnerabilities exist within the ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1299
NOTE: https://github.com/gpac/gpac/commit/bbd741e0e5a6e7e1e90a73c350acc061dde9450b
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21852 (Multiple exploitable integer overflow vulnerabilities exist within the ...)
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
@@ -44157,7 +44157,7 @@ CVE-2021-21851 (Multiple exploitable integer overflow vulnerabilities exist with
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21850 (An exploitable integer overflow vulnerability exists within the MPEG-4 ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
@@ -44165,7 +44165,7 @@ CVE-2021-21850 (An exploitable integer overflow vulnerability exists within the
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21849 (An exploitable integer overflow vulnerability exists within the MPEG-4 ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
@@ -44173,7 +44173,7 @@ CVE-2021-21849 (An exploitable integer overflow vulnerability exists within the
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21848 (An exploitable integer overflow vulnerability exists within the MPEG-4 ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
@@ -44181,7 +44181,7 @@ CVE-2021-21848 (An exploitable integer overflow vulnerability exists within the
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21847 (Multiple exploitable integer overflow vulnerabilities exist within the ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
@@ -44189,7 +44189,7 @@ CVE-2021-21847 (Multiple exploitable integer overflow vulnerabilities exist with
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21846 (Multiple exploitable integer overflow vulnerabilities exist within the ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
@@ -44197,7 +44197,7 @@ CVE-2021-21846 (Multiple exploitable integer overflow vulnerabilities exist with
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21845 (Multiple exploitable integer overflow vulnerabilities exist within the ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
@@ -44205,7 +44205,7 @@ CVE-2021-21845 (Multiple exploitable integer overflow vulnerabilities exist with
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21844 (Multiple exploitable integer overflow vulnerabilities exist within the ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
@@ -44213,7 +44213,7 @@ CVE-2021-21844 (Multiple exploitable integer overflow vulnerabilities exist with
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21843 (Multiple exploitable integer overflow vulnerabilities exist within the ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
@@ -44221,7 +44221,7 @@ CVE-2021-21843 (Multiple exploitable integer overflow vulnerabilities exist with
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21842 (An exploitable integer overflow vulnerability exists within the MPEG-4 ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
@@ -44229,7 +44229,7 @@ CVE-2021-21842 (An exploitable integer overflow vulnerability exists within the
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21841 (An exploitable integer overflow vulnerability exists within the MPEG-4 ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
@@ -44237,7 +44237,7 @@ CVE-2021-21841 (An exploitable integer overflow vulnerability exists within the
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21840 (An exploitable integer overflow vulnerability exists within the MPEG-4 ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
@@ -44245,7 +44245,7 @@ CVE-2021-21840 (An exploitable integer overflow vulnerability exists within the
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21839 (Multiple exploitable integer overflow vulnerabilities exist within the ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
@@ -44253,7 +44253,7 @@ CVE-2021-21839 (Multiple exploitable integer overflow vulnerabilities exist with
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21838 (Multiple exploitable integer overflow vulnerabilities exist within the ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
@@ -44261,7 +44261,7 @@ CVE-2021-21838 (Multiple exploitable integer overflow vulnerabilities exist with
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21837 (Multiple exploitable integer overflow vulnerabilities exist within the ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
@@ -44269,7 +44269,7 @@ CVE-2021-21837 (Multiple exploitable integer overflow vulnerabilities exist with
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21836 (An exploitable integer overflow vulnerability exists within the MPEG-4 ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
@@ -44283,7 +44283,7 @@ CVE-2021-21835 (An exploitable integer overflow vulnerability exists within the
NOTE: https://github.com/gpac/gpac/issues/1814
CVE-2021-21834 (An exploitable integer overflow vulnerability exists within the MPEG-4 ...)
{DSA-4966-1}
- - gpac <unfixed>
+ - gpac 1.0.1+dfsg1-5
[buster] - gpac <not-affected> (Vulnerable code not present)
[stretch] - gpac <not-affected> (Vulnerable code not present)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dce1bd7d8daec759b2602821652271950f8c23a4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dce1bd7d8daec759b2602821652271950f8c23a4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210902/923c8d51/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list