[Git][security-tracker-team/security-tracker][master] Process three more gpac issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Nov 1 20:26:59 GMT 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f4464538 by Salvatore Bonaccorso at 2023-11-01T21:26:22+01:00
Process three more gpac issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -18,11 +18,17 @@ CVE-2023-46931 (GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-ove
 	NOTE: https://github.com/gpac/gpac/issues/2664
 	NOTE: https://github.com/gpac/gpac/commit/671976fccc971b3dff8d3dcf6ebd600472ca64bf
 CVE-2023-46930 (GPAC 2.3-DEV-rev605-gfc9e29089-master contains a SEGV in gpac/MP4Box i ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/issues/2666
+	NOTE: https://github.com/gpac/gpac/commit/3809955065afa3da1ad580012ec43deadbb0f2c8
 CVE-2023-46928 (GPAC 2.3-DEV-rev605-gfc9e29089-master contains a SEGV in gpac/MP4Box i ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/issues/2661
+	NOTE: https://github.com/gpac/gpac/commit/0753bf6d867343a80a044bf47a27d0b7accc8bf1
 CVE-2023-46927 (GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow  ...)
-	TODO: check
+	- gpac <unfixed>
+	NOTE: https://github.com/gpac/gpac/issues/2657
+	NOTE: https://github.com/gpac/gpac/commit/a7b467b151d9b54badbc4dd71e7a366b7c391817
 CVE-2023-46911 (There is a Cross Site Scripting (XSS) vulnerability in the choose_styl ...)
 	TODO: check
 CVE-2023-46724 (Squid is a caching proxy for the Web. Due to an Improper Validation of ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f446453872a9b14b5527866479e11ac13c595ddc

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f446453872a9b14b5527866479e11ac13c595ddc
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231101/835236a0/attachment.htm>

More information about the debian-security-tracker-commits mailing list