Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 5411-1] gpac security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5411-1] gpac security update


Chronologisch Thread  
  • From: Aron Xu <aron AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 5411-1] gpac security update
  • Date: Fri, 26 May 2023 14:00:08 +0000
  • Authentication-results: mail.piratenpartei.de; dkim=none; spf=none (mail.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 2001:41b8:202:deb:216:36ff:fe40:4002) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"; dmarc=none
  • List-archive: https://lists.debian.org/msgid-search/E1q2XzE-005h07-6R AT seger.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Date:Message-Id:Subject:To:From:Reply-To:Cc:MIME-Version: Content-Type:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=3kPuCW7N/Us6RiuALKoexhSAT+198pEB//LpWxN4/SU=; b=N/ ro1JllcoaN/Z3nw2ESq4pronWqUdYEllJQ+ft1IgCl+q0mYrjcXPMMSBMy1YcT//LU9ot+xNi79Ye gkIjN29GIjiDJd0X1yuVwbvLycDQJgEYiOXCGIaxtHa4JydvervfbPOeTAl1Am5J1VUktUV2x2+7U G22vj3jQL0m7l0IJUTQosfSJ9YLZdPkknKwLaQUH9w4IbRATJn//3sZHUACZ98v/G93PtlctGd1qZ 6821aU0IwEyp4ttzC1dR/GaSwnCD9ZH4+n7Bbso0PDzINx345yyHimFwKWDo+LFLYCnVtCQL8Atn5 MpSHSatVmZK19rDPvZ+9zsAPjTJrgVFQ==;
  • Old-return-path: <aron AT seger.debian.org>
  • Priority: urgent
  • Resent-date: Fri, 26 May 2023 14:00:33 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <3zURQwuwht.A.2xF.BuLckB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5411-1 security AT debian.org
https://www.debian.org/security/ Aron Xu
May 26, 2023 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : gpac
CVE ID : CVE-2020-35980 CVE-2021-4043 CVE-2021-21852 CVE-2021-33361
CVE-2021-33363 CVE-2021-33364 CVE-2021-33365 CVE-2021-33366
CVE-2021-36412 CVE-2021-36414 CVE-2021-36417 CVE-2021-40559
CVE-2021-40562 CVE-2021-40563 CVE-2021-40564 CVE-2021-40565
CVE-2021-40566 CVE-2021-40567 CVE-2021-40568 CVE-2021-40569
CVE-2021-40570 CVE-2021-40571 CVE-2021-40572 CVE-2021-40574
CVE-2021-40575 CVE-2021-40576 CVE-2021-40592 CVE-2021-40606
CVE-2021-40608 CVE-2021-40609 CVE-2021-40944 CVE-2021-41456
CVE-2021-41457 CVE-2021-41459 CVE-2021-45262 CVE-2021-45263
CVE-2021-45267 CVE-2021-45291 CVE-2021-45292 CVE-2021-45297
CVE-2021-45760 CVE-2021-45762 CVE-2021-45763 CVE-2021-45764
CVE-2021-45767 CVE-2021-45831 CVE-2021-46038 CVE-2021-46039
CVE-2021-46040 CVE-2021-46041 CVE-2021-46042 CVE-2021-46043
CVE-2021-46044 CVE-2021-46045 CVE-2021-46046 CVE-2021-46047
CVE-2021-46049 CVE-2021-46051 CVE-2022-1035 CVE-2022-1222
CVE-2022-1441 CVE-2022-1795 CVE-2022-2454 CVE-2022-3222
CVE-2022-3957 CVE-2022-4202 CVE-2022-24574 CVE-2022-24577
CVE-2022-24578 CVE-2022-26967 CVE-2022-27145 CVE-2022-27147
CVE-2022-29537 CVE-2022-36190 CVE-2022-36191 CVE-2022-38530
CVE-2022-43255 CVE-2022-45202 CVE-2022-45283 CVE-2022-45343
CVE-2022-47086 CVE-2022-47091 CVE-2022-47094 CVE-2022-47095
CVE-2022-47657 CVE-2022-47659 CVE-2022-47660 CVE-2022-47661
CVE-2022-47662 CVE-2022-47663 CVE-2023-0770 CVE-2023-0818
CVE-2023-0819 CVE-2023-0866 CVE-2023-1448 CVE-2023-1449
CVE-2023-1452 CVE-2023-1654 CVE-2023-2837 CVE-2023-2838
CVE-2023-2839 CVE-2023-2840 CVE-2023-23143 CVE-2023-23144
CVE-2023-23145

Multiple issues were found in GPAC multimedia framework, whcih could result
in denial of service or potentially the execution of arbitrary code.

For the stable distribution (bullseye), these problems have been fixed in
version 1.0.1+dfsg1-4+deb11u2.

We recommend that you upgrade your gpac packages.

For the detailed security status of gpac please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/gpac

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEEhhz+aYQl/Bp4OTA7O1LKKgqv2VQFAmRwutMACgkQO1LKKgqv
2VQhxgf/aXBHEqvI+O12zLVGiSFBgAgP0WpynhRv+ESync2+EFNBpF/1/w0CAhVr
mn3NWsUxj21u4Pm9YjfvG7+YXaDTaEqkrgwVknvZKwV6KY42mSEvztWfqTk5xEe1
Hi7MUL+xKIjUblcgFxNSEAZkb/u9XO3KE7XbPKqNE+FZtz+K95Vtq7CGx+jvpa/F
Q+e286fsay38RYsI+ESqxe8N5WYljiIph/thot/uawV6vSNYqR1te4wzn//AkDvL
ADq4Hsr3yQSpDbPEToJwS+Q/Gd4YH7IsqtdSMWdtnrxC6Ri4zSrq+AlOvPe7xM35
aIUZuLxhqlp6rmBBhNYefgqTiX1vdg==
=faP5
-----END PGP SIGNATURE-----



  • [IT-SecNots] [SECURITY] [DSA 5411-1] gpac security update, Aron Xu, 26.05.2023

Archiv bereitgestellt durch MHonArc 2.6.24.

Seitenanfang