Add CVE-2020-22679/gpac

author: Salvatore Bonaccorso <carnil@debian.org> 2021-10-14 10:17:15 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-10-14 10:17:15 +0200
commit: e410e01ea2b1e9f90912f91dc9b5330bac501788 (patch)
tree: b760abac7b8a79e6fb92ad6ae1f2aa33eb487fe9
parent: ddee126cee414c95956d16d0a879ecc7f96d138d (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/data/CVE/list.2020 b/data/CVE/list.2020
index 3a8317dad3..28d1ff97be 100644
--- a/data/CVE/list.2020
+++ b/data/CVE/list.2020
@@ -19755,7 +19755,10 @@ CVE-2020-22681
 CVE-2020-22680
 	RESERVED
 CVE-2020-22679 (Memory leak in the sgpd_parse_entry function in MP4Box in gpac 0.8.0 a ...)
-	TODO: check
+	- gpac 1.0.1+dfsg1-2 (unimportant)
+	NOTE: https://github.com/gpac/gpac/issues/1345
+	NOTE: https://github.com/gpac/gpac/commit/6c1e7ddfae2ad4daeda7f7e544da34cb765d36c9
+	NOTE: Negligible security impact
 CVE-2020-22678 (An issue was discovered in gpac 0.8.0. The gf_media_nalu_remove_emulat ...)
 	TODO: check
 CVE-2020-22677 (An issue was discovered in gpac 0.8.0. The dump_data_hex function in b ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2021-10-14 10:17:15 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-10-14 10:17:15 +0200
commit	e410e01ea2b1e9f90912f91dc9b5330bac501788 (patch)
tree	b760abac7b8a79e6fb92ad6ae1f2aa33eb487fe9
parent	ddee126cee414c95956d16d0a879ecc7f96d138d (diff)