[Git][security-tracker-team/security-tracker][master] add fix references for CVEless entries
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sun Jul 2 07:44:39 BST 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b5ea0ec9 by Moritz Mühlenhoff at 2023-07-02T08:44:02+02:00
add fix references for CVEless entries
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -268,18 +268,24 @@ CVE-2023-33190 (Sealos is an open source cloud operating system distribution bas
TODO: check
CVE-2023-XXXX [Heap overwrite in PGS subtitle overlay decoder]
- gst-plugins-bad1.0 1.22.4-1
+ [bookworm] - gst-plugins-bad1.0 1.22.0-4+deb12u1
+ [bullseye] - gst-plugins-bad1.0 1.18.4-3+deb11u1
NOTE: https://gstreamer.freedesktop.org/security/sa-2023-0003.html
NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/4896.patch
NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/5f3cf0a7d7ae7ab883d0611e85c06354f1e94907
NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/60226124ec367c2549e4bf1e6174dfb8eca5a63d
CVE-2023-XXXX [Integer overflow leading to heap overwrite in FLAC image tag handling]
- gst-plugins-good1.0 1.22.4-1
+ [bookworm] - gst-plugins-good1.0 1.22.0-5+deb12u1
+ [bullseye] - gst-plugins-good1.0 1.18.4-2+deb11u2
NOTE: https://gstreamer.freedesktop.org/security/sa-2023-0001.html
NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/4894.patch
NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/bdc8021c73c16c49d594579c606a4f4771a2670e
NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/7bcd791fabe03b9ab1c72f494fc86cd0c06c3556
CVE-2023-XXXX [Heap overwrite in subtitle parsing]
- gst-plugins-base1.0 1.22.4-1
+ [bookworm] - gst-plugins-base1.0 1.22.0-3+deb12u1
+ [bullseye] - gst-plugins-base1.0 1.18.4-2+deb11u1
NOTE: https://gstreamer.freedesktop.org/security/sa-2023-0002.html
NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/4895.patch
NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/518ecba8f960137715f776dac6c93e4c4e4179d1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b5ea0ec97c453a511182846aff872fab3917bc99
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b5ea0ec97c453a511182846aff872fab3917bc99
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230702/284d02b5/attachment.htm>
More information about the debian-security-tracker-commits
mailing list