[Git][security-tracker-team/security-tracker][master] record upstream fix for CVE-2021-46312, might also fix CVE-2021-46310, needs testing
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Oct 28 19:21:54 GMT 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0cd795fc by Moritz Muehlenhoff at 2024-10-28T20:21:21+01:00
record upstream fix for CVE-2021-46312, might also fix CVE-2021-46310, needs testing
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -221737,7 +221737,7 @@ CVE-2021-46313 (The binary MP4Box in GPAC v1.0.1 was discovered to contain a seg
NOTE: https://github.com/gpac/gpac/commit/ee969d3c4c425ecb25999eb68ada616925b58eba (v2.0.0)
CVE-2021-46312 (An issue was discovered IW44EncodeCodec.cpp in djvulibre 3.5.28 in all ...)
- djvulibre <unfixed> (bug #1052669)
- [bookworm] - djvulibre <no-dsa> (Minor issue)
+ [bookworm] - djvulibre <ignored> (Minor issue)
[bullseye] - djvulibre <no-dsa> (Minor issue)
[buster] - djvulibre <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/djvu/bugs/344/
@@ -221750,10 +221750,11 @@ CVE-2021-46311 (A NULL pointer dereference vulnerability exists in GPAC v1.1.0 v
NOTE: https://github.com/gpac/gpac/commit/ad19e0c4504a89ca273442b1b1483ae7adfb9491 (v2.0.0)
CVE-2021-46310 (An issue was discovered IW44Image.cpp in djvulibre 3.5.28 in allows at ...)
- djvulibre <unfixed> (bug #1052668)
- [bookworm] - djvulibre <no-dsa> (Minor issue)
+ [bookworm] - djvulibre <ignored> (Minor issue)
[bullseye] - djvulibre <no-dsa> (Minor issue)
[buster] - djvulibre <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/djvu/bugs/345/
+ NOTE: https://sourceforge.net/p/djvu/djvulibre-git/ci/cd8b5c97b27a5c1dc83046498b6ca49ad20aa9b6/
CVE-2021-46309 (An SQL Injection vulnerability exists in Sourcecodester Employee and V ...)
NOT-FOR-US: Sourcecodester
CVE-2021-46308 (An SQL Injection vulnerability exists in Sourcecodester Online Railway ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0cd795fc7a17d14145f5c91150340819c2c6d592
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0cd795fc7a17d14145f5c91150340819c2c6d592
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241028/62d9febb/attachment.htm>
More information about the debian-security-tracker-commits
mailing list