[Git][security-tracker-team/security-tracker][master] new gpac issues
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri Feb 17 14:47:11 GMT 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d09d5b71 by Moritz Muehlenhoff at 2023-02-17T15:45:44+01:00
new gpac issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -119,7 +119,10 @@ CVE-2023-0868
CVE-2023-0867
RESERVED
CVE-2023-0866 (Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3 ...)
- TODO: check
+ - gpac <unfixed>
+ [bullseye] - gpac <no-dsa> (Minor issue)
+ NOTE: https://huntr.dev/bounties/7d3c5792-d20b-4cb6-9c6d-bb14f3430d7f
+ NOTE: https://github.com/gpac/gpac/commit/b964fe4226f1424cf676d5822ef898b6b01f5937
CVE-2023-0865
RESERVED
CVE-2023-0864
@@ -17907,8 +17910,10 @@ CVE-2022-4203 [openssl: X.509 Name Constraints Read Buffer Overflow]
NOTE: https://www.openssl.org/news/secadv/20230207.txt
NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=c927a3492698c254637da836762f9b1f86cffabc (openssl-3.0.8)
CVE-2022-4202 (A vulnerability, which was classified as problematic, was found in GPA ...)
- - gpac <undetermined>
- TODO: check details
+ - gpac <unfixed>
+ [bullseye] - gpac <no-dsa> (Minor issue)
+ NOTE: https://github.com/gpac/gpac/issues/2333
+ NOTE: https://github.com/gpac/gpac/commit/b3d821c4ae9ba62b3a194d9dcb5e99f17bd56908
CVE-2021-46856 (The multi-screen collaboration module has a path traversal vulnerabili ...)
NOT-FOR-US: Huawei
CVE-2022-46338 (g810-led 0.4.2, a LED configuration tool for Logitech Gx10 keyboards, ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d09d5b71fc3e7479f1d2bcd3a9c5a5717a423f75
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d09d5b71fc3e7479f1d2bcd3a9c5a5717a423f75
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230217/07038ffc/attachment.htm>
More information about the debian-security-tracker-commits
mailing list