From e10e97a0be46b990791506b2307ff33b25be15b0 Mon Sep 17 00:00:00 2001 From: Moritz Muehlenhoff Date: Mon, 3 Jul 2023 14:24:34 +0200 Subject: also track legacy gst source packages for recent issues --- data/CVE/list | 3 +++ 1 file changed, 3 insertions(+) diff --git a/data/CVE/list b/data/CVE/list index ddab11436f..911c323fe0 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -290,6 +290,7 @@ CVE-2023-XXXX [Heap overwrite in PGS subtitle overlay decoder] - gst-plugins-bad1.0 1.22.4-1 [bookworm] - gst-plugins-bad1.0 1.22.0-4+deb12u1 [bullseye] - gst-plugins-bad1.0 1.18.4-3+deb11u1 + - gst-plugins-bad0.10 NOTE: https://gstreamer.freedesktop.org/security/sa-2023-0003.html NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/4896.patch NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/5f3cf0a7d7ae7ab883d0611e85c06354f1e94907 @@ -298,6 +299,7 @@ CVE-2023-XXXX [Integer overflow leading to heap overwrite in FLAC image tag hand - gst-plugins-good1.0 1.22.4-1 [bookworm] - gst-plugins-good1.0 1.22.0-5+deb12u1 [bullseye] - gst-plugins-good1.0 1.18.4-2+deb11u2 + - gst-plugins-good0.10 NOTE: https://gstreamer.freedesktop.org/security/sa-2023-0001.html NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/4894.patch NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/bdc8021c73c16c49d594579c606a4f4771a2670e @@ -306,6 +308,7 @@ CVE-2023-XXXX [Heap overwrite in subtitle parsing] - gst-plugins-base1.0 1.22.4-1 [bookworm] - gst-plugins-base1.0 1.22.0-3+deb12u1 [bullseye] - gst-plugins-base1.0 1.18.4-2+deb11u1 + - gst-plugins-base0.10 NOTE: https://gstreamer.freedesktop.org/security/sa-2023-0002.html NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/4895.patch NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/518ecba8f960137715f776dac6c93e4c4e4179d1 -- cgit v1.2.3