[Git][security-tracker-team/security-tracker][master] CVE-2022-27145,6,7,8/gpac 2.0.0+dfsg1-2

Thu Apr 14 11:45:46 BST 2022


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
28504214 by Neil Williams at 2022-04-14T11:45:17+01:00
CVE-2022-27145,6,7,8/gpac 2.0.0+dfsg1-2

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5750,13 +5750,21 @@ CVE-2022-27150
 CVE-2022-27149
 	REJECTED
 CVE-2022-27148 (GPAC mp4box 1.1.0-DEV-rev1663-g881c6a94a-master is vulnerable to Integ ...)
-	TODO: check
+	- gpac 2.0.0+dfsg1-2
+	NOTE: https://github.com/gpac/gpac/issues/2067
+	NOTE: https://github.com/gpac/gpac/commit/0cd19f4db70615d707e0e6202933c2ea0c1d36df (v2.0.0)
 CVE-2022-27147 (GPAC mp4box 1.1.0-DEV-rev1727-g8be34973d-master has a use-after-free v ...)
-	TODO: check
+	- gpac 2.0.0+dfsg1-2
+	NOTE: https://github.com/gpac/gpac/issues/2109
+	NOTE: https://github.com/gpac/gpac/commit/9723dd0955894f2cb7be13b94cf7a47f2754b893 (v2.0.0)
 CVE-2022-27146 (GPAC mp4box 1.1.0-DEV-rev1759-geb2d1e6dd-has a heap-buffer-overflow vu ...)
-	TODO: check
+	- gpac 2.0.0+dfsg1-2
+	NOTE: https://github.com/gpac/gpac/issues/2120
+	NOTE: https://github.com/gpac/gpac/commit/f0a41d178a2dc5ac185506d9fa0b0a58356b16f7 (v2.0.0)
 CVE-2022-27145 (GPAC mp4box 1.1.0-DEV-rev1727-g8be34973d-master has a stack-overflow v ...)
-	TODO: check
+	- gpac 2.0.0+dfsg1-2
+	NOTE: https://github.com/gpac/gpac/commit/d7daa8aeb6df4b6c3ec102622e1599279310a19e (v2.0.0)
+	NOTE: https://github.com/gpac/gpac/issues/2108
 CVE-2022-27144
 	RESERVED
 CVE-2022-27143



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/28504214b2ef8ef829436b56f2ca44541cdf53db

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/28504214b2ef8ef829436b56f2ca44541cdf53db
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220414/95d24388/attachment.htm>
