it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5452-1] gpac security update

From: Moritz Muehlenhoff <jmm AT debian.org>
To: debian-security-announce AT lists.debian.org
Subject: [IT-SecNots] [SECURITY] [DSA 5452-1] gpac security update
Date: Fri, 14 Jul 2023 18:47:04 +0000
Authentication-results: mail.piratenpartei.de; dkim=none; spf=none (mail.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 2001:41b8:202:deb:216:36ff:fe40:4002) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"; dmarc=none
List-archive: https://lists.debian.org/msgid-search/ZLGYKOQuvE2UMBPa AT seger.debian.org
List-id: <debian-security-announce.lists.debian.org>
List-url: <http://lists.debian.org/debian-security-announce/>
Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=BenNRlxDZUMgFLx/4jMNsVbahxcrOJhaGNH2CR7Cn30=; b=LX UQfAbp4Ot6qDyXtklhjje0Z65lWj0H2uDB9I9pukznoZWaAU28MZcY4TNiVqLqXiZIDg8eDquN62l ZHTq3LgNHHmsbyTDk1iAU7MABPXUbDtrDPcNDVPEdhkrDgVOhxx6GWMR23BmbDso2KJcktHaaKYD/ yO5AXqxSOidva6E8YflxDxkh6xilRIy6i6sik6gTaZWVG54WoVoeChhDOC/FBgcUwD1xSes+2UaK4 UmROYRkMLHx3qcG/W/LYEUr4hJ0DBaIRRhDK6TtRqMC507RIHhr//NW1JXvvhd6YlyiNiz8+de9z2 Zz2NhtVcuQI5gYk45EqRRroJEaMFHa/g==;
Old-return-path: <jmm AT seger.debian.org>
Priority: urgent
Resent-date: Fri, 14 Jul 2023 18:47:32 +0000 (UTC)
Resent-from: debian-security-announce AT lists.debian.org
Resent-message-id: <AptoLfTDWMC.A.9AF.EhZskB@bendel>
Resent-sender: debian-security-announce-request AT lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5452-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
July 14, 2023 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : gpac
CVE ID : CVE-2023-0760 CVE-2023-3012 CVE-2023-3291

Multiple security issues were discovered in the GPAC multimedia
framework which could result in denial of service or the execution of
arbitrary code.

For the oldstable distribution (bullseye), these problems have been fixed
in version 1.0.1+dfsg1-4+deb11u3.

We recommend that you upgrade your gpac packages.

For the detailed security status of gpac please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/gpac

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=EqN0
-----END PGP SIGNATURE-----

[IT-SecNots] [SECURITY] [DSA 5452-1] gpac security update, Moritz Muehlenhoff, 14.07.2023

Archiv bereitgestellt durch MHonArc 2.6.24.