[Git][security-tracker-team/security-tracker][master] gpac triage

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Jun 20 08:10:29 BST 2023 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2841aaf2 by Moritz Muehlenhoff at 2023-06-20T09:09:14+02:00
gpac triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2024,7 +2024,7 @@ CVE-2023-3014 (A vulnerability, which was classified as problematic, was found i
 	NOT-FOR-US: BeipyVideoResolution
 CVE-2023-3013 (Unchecked Return Value in GitHub repository gpac/gpac prior to 2.2.2.)
 	- gpac <unfixed>
-	[bullseye] - gpac <no-dsa> (Minor issue)
+	[bullseye] - gpac <ignored> (Minor issue)
 	[buster] - gpac <end-of-life> (EOL in buster LTS)
 	NOTE: https://huntr.dev/bounties/52f95edc-cc03-4a9f-9bf8-74f641260073
 	NOTE: https://github.com/gpac/gpac/commit/78e539b43293829a14a32e821f5267e3b7417594
@@ -104728,8 +104728,8 @@ CVE-2022-24250
 	RESERVED
 CVE-2022-24249 (A Null Pointer Dereference vulnerability exists in GPAC 1.1.0 via the  ...)
 	- gpac 2.0.0+dfsg1-2
-	[bullseye] - gpac <no-dsa> (Minor issue)
-	[buster] - gpac <no-dsa> (Minor issue)
+	[bullseye] - gpac <not-affected> (Vulnerable code not present)
+	[buster] - gpac <not-affected> (Vulnerable code not present)
 	[stretch] - gpac <end-of-life> (No longer supported in LTS)
 	NOTE: https://github.com/gpac/gpac/issues/2081
 	NOTE: https://github.com/gpac/gpac/commit/71f9871fc210e60df041b58c84572782b4849de9 (v2.0.0)
@@ -114911,8 +114911,8 @@ CVE-2021-45290 (A Denial of Service vulnerability exits in Binaryen 103 due to a
 	NOTE: Crash in CLI tool, no security impact
 CVE-2021-45289 (A vulnerability exists in GPAC 1.0.1 due to an omission of security-re ...)
 	- gpac 2.0.0+dfsg1-2
-	[bullseye] - gpac <no-dsa> (Minor issue)
-	[buster] - gpac <end-of-life> (EOL in buster LTS)
+	[bullseye] - gpac <not-affected> (Vulnerable code not present)
+	[buster] - gpac <not-affected> (Vulnerable code not present)
 	[stretch] - gpac <end-of-life> (No longer supported in LTS)
 	NOTE: https://github.com/gpac/gpac/issues/1972
 	NOTE: https://github.com/gpac/gpac/commit/5e1f084e0c6ad2736c9913715c4abb57c554209d (v2.0.0)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2841aaf250ee34b0543a6714a165e3f6f32b463f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2841aaf250ee34b0543a6714a165e3f6f32b463f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230620/db94d864/attachment.htm>

More information about the debian-security-tracker-commits mailing list