[Git][security-tracker-team/security-tracker][master] Add references to commits for CVE-2024-5171/aom and CVE-2024-5197/libvpx

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jun 5 19:57:59 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1a3a0935 by Salvatore Bonaccorso at 2024-06-05T20:57:02+02:00
Add references to commits for CVE-2024-5171/aom and CVE-2024-5197/libvpx

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -410,9 +410,14 @@ CVE-2024-5214
 CVE-2024-5171
 	- aom 3.8.2-3
 	NOTE: https://issues.chromium.org/issues/332382766
+	NOTE: https://aomedia.googlesource.com/aom/+/19d9966572a410804349e1a8ee2017fed49a6dab
+	NOTE: https://aomedia.googlesource.com/aom/+/8156fb76d88845d716867d20333fd27001be47a8
 CVE-2024-5197 (There exists interger overflows in libvpx in versions prior to 1.14.1. ...)
 	- libvpx 1.14.1-1
 	NOTE: https://issues.chromium.org/issues/332382766
+	NOTE: https://github.com/webmproject/libvpx/commit/c5640e3300690705c336966e2a8bb346a388c829
+	NOTE: https://github.com/webmproject/libvpx/commit/9d7054c0cb83665a74cf6f59b6261f455e692149
+	NOTE: https://github.com/webmproject/libvpx/commit/61c4d556bd03b97d84e3fa49180d14bde5a62baa
 CVE-2024-4540 (A flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Request ...)
 	NOT-FOR-US: Keycloak
 CVE-2024-4332 (An authentication bypass vulnerability has been identified in the REST ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1a3a0935b56f54ebcc6272dd685fdc6f236351cf

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1a3a0935b56f54ebcc6272dd685fdc6f236351cf
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240605/567bb30a/attachment.htm>

More information about the debian-security-tracker-commits mailing list