Bug#1074275: Depends on gpac

Source: ogmrip Version: 1.0.1-4 Severity: serious gpac is unsupportable and thus orphaned and not in stable. It should be removed, but ogmrip depends on it. From a quick glance ogmrip also supports mencoder, so possibly that dependency could simply get removed? Cheers, Moritz

Bug#1034798: RM: gpac/2.0.0+dfsg1-4

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: rm X-Debbugs-Cc: g...@packages.debian.org, siret...@tauware.de, sramac...@debian.org Control: affects -1 + src:gpac In priot discussion between Reinhard, Sebastian and the Security team we've come

Bug#1034732: Keep out of testing

Package: gpac Version: 2.0.0+dfsg1-2+b1 Severity: serious In some discussion between Reinhard, Sebastian and the Security team we've come to the conclusion that gpac isn't suitable to be included in a stable release. The massive influx of security issues makes that untenable (and there's no suit

Bug#1016986: Should pd-py be removed?

Source: pd-py Version: 0.2.2+git20170625.1.88fc77a-2 Severity: serious Your package came up as a candidate for removal from Debian: - Still depends on Python 2, which is finally being removed in Bookworm - Last upload in 2018 If you disagree and want to continue to maintain this package, please j

Bug#1012138: CVE-2021-40426

Source: sox Version: 14.4.2+git20190427-3 Severity: grave Tags: security X-Debbugs-Cc: Debian Security Team https://talosintelligence.com/vulnerability_reports/TALOS-2021-1434 The report states that upstream was notified, but we need to figure out whether this was addressed by upstream already o

Bug#1009930: Drop Suggests on xmms2

Source: playerctl Version: 2.4.1-1 Severity: normal Hi, please remove the Suggests: on xmms2. It will not be part of bookworm (#1005902) and eventually removed from the archive. Cheers, Moritz

Bug#1004963: CVE-2020-21598 CVE-2020-21600 CVE-2020-21602

Source: libde265 Version: 1.0.8-1 Severity: grave Tags: security X-Debbugs-Cc: Debian Security Team CVE-2020-21602: https://github.com/strukturag/libde265/issues/242 CVE-2020-21600: https://github.com/strukturag/libde265/issues/243 CVE-2020-21598: https://github.com/strukturag/libde265/issues/2

Bug#989439: CVE-2020-22033 CVE-2020-22021 CVE-2020-22019 CVE-2020-22015 CVE-2020-21041

Package: ffmpeg Version: 7:4.3.2-0+deb11u1 Severity: important Tags: security X-Debbugs-Cc: Debian Security Team A few security issues: CVE-2020-22033: https://trac.ffmpeg.org/ticket/8246 https://trac.ffmpeg.org/ticket/8241 https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=82ad1b76751bcfad50

Bug#988211: CVE-2021-30473

Source: aom Severity: important Tags: security X-Debbugs-Cc: Debian Security Team CVE-2021-30473: | aom_image.c in libaom in AOMedia before 2021-04-07 frees memory that is not located on the heap. Unfortunately https://bugs.chromium.org/p/aomedia/issues/detail?id=2998 is private, but the fix a

Bug#987280: CVE-2021-31254 CVE-2021-31255 CVE-2021-31256 CVE-2021-31257 CVE-2021-31258 CVE-2021-31259 CVE-2021-31260 CVE-2021-31261 CVE-2021-31262

Package: gpac Version: 1.0.1+dfsg1-3 Severity: grave Tags: security X-Debbugs-Cc: Debian Security Team CVE-2021-31262 https://github.com/gpac/gpac/commit/b2eab95e07cb5819375a50358d4806a8813b6e50 https://github.com/gpac/gpac/issues/1738 CVE-2021-31261 https://github.com/gpac/gpac/commit/cd3738dea

Bug#979676: CVE-2020-26664

Package: vlc Severity: important Tags: security X-Debbugs-Cc: Debian Security Team This was assigned CVE-2020-26664: https://code.videolan.org/videolan/vlc-3.0/-/commit/ec1f55ee9ace5cc675395a1bc9700d99679e7e8c https://gist.githubusercontent.com/henices/db11664dd45b9f322f8514d182aef5ea/raw/d56940

Bug#972053: CVE-2019-20161 CVE-2019-20162 CVE-2019-20163 CVE-2019-20165 CVE-2019-20170 CVE-2019-20208 CVE-2019-20628 CVE-2019-20629 CVE-2019-20630 CVE-2019-20631 CVE-2019-20632 CVE-2020-11558 CVE-2020

Package: gpac Version: 0.5.2-426-gc5ad4e4+dfsg5-5 Severity: grave Tags: security X-Debbugs-Cc: Debian Security Team CVE-2019-20161: https://github.com/gpac/gpac/issues/1320 https://github.com/gpac/gpac/commit/7a09732d4978586e6284e84caa9c301b2fa5e956 CVE-2019-20162: https://github.com/gpac/gpac/i

Bug#931088: CVE-2019-12481 CVE-2019-12482 CVE-2019-12483

Package: gpac Version: 0.5.2-426-gc5ad4e4+dfsg5-5 Severity: important Tags: security Please see http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12481 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12482 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12483 For all three

Bug#929948: CVE-2019-7733

Source: liblivemedia Severity: important Tags: security This was assigned CVE-2019-7733: https://github.com/rgaufman/live555/issues/21 Cheers, Moritz

Bug#928210: CVE-2019-11471

Source: libheif Severity: grave Tags: security This was assigned CVE-2019-11471: https://github.com/strukturag/libheif/issues/123 Patch: https://github.com/strukturag/libheif/commit/995a4283d8ed2d0d2c1ceb1a577b993df2f0e014 Cheers, Moritz

Bug#926666: CVE-2019-9718 CVE-2019-9721

Package: ffmpeg Version: 7:4.1.1-1 Severity: important Tags: security https://security-tracker.debian.org/tracker/CVE-2019-9718 https://security-tracker.debian.org/tracker/CVE-2019-9721 Both a fixed in the 4.1.3 release, which also fixes a number of additional issues without a CVE ID. Cheers,

Bug#922066: CVE-2019-1000016

Package: ffmpeg Version: 7:4.1-1 Severity: important Tags: security Please see https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-116 Cheers, Moritz

Bug#921969: CVE-2018-20760 CVE-2018-20761 CVE-2018-20762 CVE-2018-20763

Source: gpac Severity: grave Tags: security CVE-2018-20760: https://github.com/gpac/gpac/commit/4c1360818fc8948e9307059fba4dc47ba8ad255d https://github.com/gpac/gpac/issues/1177 CVE-2018-20761: https://github.com/gpac/gpac/commit/35ab4475a7df9b2a4bcab235e379c0c3ec543658 https://github.com/gpac/gp

Bug#919529: CVE-2019-6256

Source: liblivemedia Severity: grave Tags: security Please see http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6256 Cheers, Moritz

Bug#913895: CVE-2018-17097

Source: soundtouch Severity: important Tags: security Please see https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17097 Cheers, Moritz

Bug#913894: CVE-2018-17098

Source: soundtouch Severity: important Please see https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17098 Cheers, Moritz

Bug#464092: ams: diff for NMU version 1.8.8~rc2-3.1

+removal, patch by Barry deFreese (Closes: #464092) + + -- Moritz Muehlenhoff <[EMAIL PROTECTED]> Thu, 27 Mar 2008 19:32:38 +0100 + ams (1.8.8~rc2-3) unstable; urgency=low * Recommends vco rev and amb plugins diff -u ams-1.8.8~rc2/debian/control ams-1.8.8~rc2/debian/control --- ams

Bug#456098: openmovieeditor: diff for NMU version 0.0.20080102-2.1

urgency=low + + * Non-maintainer upload. + * Fix GCC 4.3 compatibility, patch by Cyril Brulebois (Closes: #456098) + + -- Moritz Muehlenhoff <[EMAIL PROTECTED]> Sat, 22 Mar 2008 00:25:13 +0100 + openmovieeditor (0.0.20080102-2) unstable; urgency=low * Added libmpeg3-dev to build-depende

Bug#453283: CVE-2007-6103: remote DoS

Steffen Joeris wrote: > CVE-2007-6103: > > I Hear U (IHU) 0.5.6 and earlier allows remote attackers to cause (1) a > denial of service (infinite loop) via a packet that contains zero in the > size field in its header, which is improperly handled by the > Receiver::processPacket function; and (2)

Bug#446405: ardour: Embeds too many libs

Package: ardour Severity: serious Quoting from #444518: > That made me discover the following: > > | [EMAIL PROTECTED]:~/bsp2/ardour-2.1$ ls libs/ > | appleutility ardour clearlooks fst glibmm2 gtkmm2 gtkmm2ext > libgnomecanvasmm libsndfile midi++2 pbd sigc++2 > +soundtouch surfaces >