diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-23 14:49:26 +0100 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-23 14:49:26 +0100 |
commit | b89b20bff776f2646dc7f536b4880386ffbbe923 (patch) | |
tree | 8b597b1750df89ce62c039864582d99e5246f55e /data | |
parent | 5cfbc328a83cf6513536c526b5eaeb30ed3113e7 (diff) |
Add some libde265 issues
Diffstat (limited to 'data')
-rw-r--r-- | data/CVE/list | 15 |
1 files changed, 10 insertions, 5 deletions
diff --git a/data/CVE/list b/data/CVE/list index 2c3ee77133..7ab9571222 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -33741,15 +33741,19 @@ CVE-2021-36412 (A heap-based buffer overflow vulnerability exists in MP4Box in G NOTE: https://github.com/gpac/gpac/issues/1838 NOTE: https://github.com/gpac/gpac/commit/828188475084db87cebc34208b6bd2509709845e CVE-2021-36411 (An issue has been found in libde265 v1.0.8 due to incorrect access con ...) - TODO: check + - libde265 <unfixed> + NOTE: https://github.com/strukturag/libde265/issues/302 CVE-2021-36410 (A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion. ...) - TODO: check + - libde265 <unfixed> + NOTE: https://github.com/strukturag/libde265/issues/301 CVE-2021-3641 (Improper Link Resolution Before File Access ('Link Following') vulnera ...) NOT-FOR-US: Bitdefender CVE-2021-36409 (There is an Assertion `scaling_list_pred_matrix_id_delta==1' failed at ...) - TODO: check + - libde265 <unfixed> + NOTE: https://github.com/strukturag/libde265/issues/300 CVE-2021-36408 (An issue was discovered in libde265 v1.0.8.There is a Heap-use-after-f ...) - TODO: check + - libde265 <unfixed> + NOTE: https://github.com/strukturag/libde265/issues/299 CVE-2021-36407 RESERVED CVE-2021-36406 @@ -36122,7 +36126,8 @@ CVE-2021-35454 CVE-2021-35453 RESERVED CVE-2021-35452 (An Incorrect Access Control vulnerability exists in libde265 v1.0.8 du ...) - TODO: check + - libde265 <unfixed> + NOTE: https://github.com/strukturag/libde265/issues/298 CVE-2021-35451 (In Teradici PCoIP Management Console-Enterprise 20.07.0, an unauthenti ...) NOT-FOR-US: Teradici PCoIP Management Console-Enterprise CVE-2021-35450 (A Server Side Template Injection in the Entando Admin Console 6.3.9 an ...) |