[Git][security-tracker-team/security-tracker][master] "new" vlc issues

Tue, 27 Jul 2021 01:55:32 -0700 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
6e5e34d3 by Moritz Muehlenhoff at 2021-07-27T10:54:55+02:00
"new" vlc issues

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -28361,13 +28361,17 @@ CVE-2021-25806
 CVE-2021-25805
        RESERVED
 CVE-2021-25804 (A NULL-pointer dereference in "Open" in avi.c of VideoLAN VLC 
Media Pl ...)
-       TODO: check
+       - vlc 3.0.12-1
+       NOTE: 
https://code.videolan.org/videolan/vlc-3.0/-/commit/a7f577ec26d35bbd7b2a3cda89d1b41bde69de9c
 (v3.0.12)
 CVE-2021-25803 (A buffer overflow vulnerability in the 
vlc_input_attachment_New compon ...)
-       TODO: check
+       - vlc 3.0.12-1
+       NOTE: 
https://code.videolan.org/videolan/vlc-3.0/-/commit/56cbe9c4b59edbdc5e1bb2687992f3bbf492eccb
 (v3.0.12)
 CVE-2021-25802 (A buffer overflow vulnerability in the AVI_ExtractSubtitle 
component o ...)
-       TODO: check
+       - vlc 3.0.12-1
+       NOTE: 
https://code.videolan.org/videolan/vlc-3.0/-/commit/0660acc3ab64d2c3ad99cae887a438f0648faa72
 (v3.0.12)
 CVE-2021-25801 (A buffer overflow vulnerability in the __Parse_indx component 
of Video ...)
-       TODO: check
+       - vlc 3.0.12-1
+       NOTE: 
https://code.videolan.org/videolan/vlc-3.0/-/commit/f5f8cc3ab8825f178de3f6714bfbff8b3f293fd2
 (v3.0.12)
 CVE-2021-25800
        RESERVED
 CVE-2021-25799


=====================================
data/DSA/list
=====================================
@@ -331,7 +331,7 @@
        {CVE-2020-13943 CVE-2020-17527}
        [buster] - tomcat9 9.0.31-1~deb10u3
 [22 Jan 2021] DSA-4834-1 vlc - security update
-       {CVE-2020-26664}
+       {CVE-2020-26664 CVE-2021-25801 CVE-2021-25802 CVE-2021-25803 
CVE-2021-25804}
        [buster] - vlc 3.0.12-0+deb10u1
 [18 Jan 2021] DSA-4833-1 gst-plugins-bad1.0 - security update
        {CVE-2021-3185}



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6e5e34d35bb84b8d218f5a10eab10ccbaa4e1517

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6e5e34d35bb84b8d218f5a10eab10ccbaa4e1517
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to