[Git][security-tracker-team/security-tracker][master] CVE-2023-50186/gst-plugins-bad1.0 assigned
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Apr 22 08:33:52 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d3e0c37b by Salvatore Bonaccorso at 2024-04-22T09:32:52+02:00
CVE-2023-50186/gst-plugins-bad1.0 assigned
- - - - -
2 changed files:
- data/CVE/list
- data/DSA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -45217,9 +45217,8 @@ CVE-2023-42114 [Exim NTLM Challenge Out-Of-Bounds Read Information Disclosure Vu
NOTE: https://www.openwall.com/lists/oss-security/2023/09/29/5
NOTE: https://www.openwall.com/lists/oss-security/2023/10/01/4
NOTE: https://exim.org/static/doc/security/CVE-2023-zdi.txt
-CVE-2023-XXXX [AV1 codec parser buffer overflow]
+CVE-2023-50186 [AV1 codec parser buffer overflow]
- gst-plugins-bad1.0 1.22.8-1
- [bookworm] - gst-plugins-bad1.0 1.22.0-4+deb12u4
[bullseye] - gst-plugins-bad1.0 <not-affected> (Vulnerable code not present)
[buster] - gst-plugins-bad1.0 <not-affected> (Vulnerable code not present)
- gst-plugins-bad0.10 <not-affected> (Vulnerable code not present)
=====================================
data/DSA/list
=====================================
@@ -315,6 +315,7 @@
[bullseye] - bluez 5.55-3.1+deb11u1
[bookworm] - bluez 5.66-1+deb12u1
[21 Dec 2023] DSA-5583-1 gst-plugins-bad1.0 - security update
+ {CVE-2023-50186}
[bookworm] - gst-plugins-bad1.0 1.22.0-4+deb12u4
[21 Dec 2023] DSA-5582-1 thunderbird - security update
{CVE-2023-6856 CVE-2023-6857 CVE-2023-6858 CVE-2023-6859 CVE-2023-6860 CVE-2023-6861 CVE-2023-6862 CVE-2023-6864 CVE-2023-6873 CVE-2023-50761 CVE-2023-50762}
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d3e0c37b19a36bb8e06b77711de7ec96e33fe8eb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d3e0c37b19a36bb8e06b77711de7ec96e33fe8eb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240422/30287336/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list