[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5c4bed7c by security tracker role at 2023-11-25T20:11:44+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9742,6 +9742,7 @@ CVE-2023-42114 [Exim NTLM Challenge Out-Of-Bounds Read Information Disclosure Vu
 	NOTE: https://www.openwall.com/lists/oss-security/2023/10/01/4
 	NOTE: https://exim.org/static/doc/security/CVE-2023-zdi.txt
 CVE-2023-44446 [MXF demuxer use-after-free]
+	{DSA-5565-1}
 	- gst-plugins-bad1.0 <unfixed> (bug #1056101)
 	- gst-plugins-bad0.10 <removed>
 	NOTE: https://gstreamer.freedesktop.org/security/sa-2023-0010.html
@@ -9749,6 +9750,7 @@ CVE-2023-44446 [MXF demuxer use-after-free]
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/274551d450e443a8c71baa95e3f8d5dad212737f
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/7dfaa57b6f9b55f17ffe824bd8988bb71ae11353 (1.22.7)
 CVE-2023-44429 [AV1 codec parser buffer overflow]
+	{DSA-5565-1}
 	- gst-plugins-bad1.0 <unfixed> (bug #1056102)
 	[buster] - gst-plugins-bad1.0 <not-affected> (Vulnerable code was introduced later)
 	- gst-plugins-bad0.10 <removed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5c4bed7c7c27f57a46b5ad07c1120fb997fe9f1e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5c4bed7c7c27f57a46b5ad07c1120fb997fe9f1e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231125/08a1a80d/attachment.htm>