[Git][security-tracker-team/security-tracker][master] Two gpac CVEs, CVE-2020-19751 is unfixed (#993979)

[Neil Williams (@codehelp)]

Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6cf39d07 by Neil Williams at 2021-09-09T09:12:23+01:00
Two gpac CVEs, CVE-2020-19751 is unfixed (#993979)

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -80256,9 +80256,13 @@ CVE-2020-19752 (The find_color_or_error function in gifsicle 1.92 contains a NUL
 	NOTE: https://github.com/kohler/gifsicle/issues/140
 	NOTE: https://github.com/kohler/gifsicle/commit/eb9e083dcc0050996d79de2076ddc76011ad2f10 (v1.93)
 CVE-2020-19751 (An issue was discovered in gpac 0.8.0. The gf_odf_del_ipmp_tool functi ...)
-	TODO: check
+	- gpac <unfixed> (bug #993979)
+	[buster] - gpac <not-affected> (Vulnerable code introduced later)
+	NOTE: https://github.com/gpac/gpac/commit/c26b0aa605aaea1f0ebe8d21fe1398d94680adf7
 CVE-2020-19750 (An issue was discovered in gpac 0.8.0. The strdup function in box_code ...)
-	TODO: check
+	- gpac 1.0.1+dfsg1-2
+	[buster] - gpac
+	NOTE: https://github.com/gpac/gpac/commit/3fcf66c6031da966cf33ee89bcbefa2f8bec4b02
 CVE-2020-19749
 	RESERVED
 CVE-2020-19748



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6cf39d070ce0d7196f51733178b89ed49e642f87

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6cf39d070ce0d7196f51733178b89ed49e642f87
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210909/e2d2e006/attachment.htm>