LTS: mark CVE-2020-19488/gpac as <not-affected> for stretch and buster

author: Roberto C. Sánchez <roberto@debian.org> 2022-01-07 17:22:47 -0500
committer: Roberto C. Sánchez <roberto@debian.org> 2022-01-07 17:22:47 -0500
commit: 3bb9e2124259fbb47e2bd40d231cf817c6b9fd95 (patch)
tree: c99012fdaf7c21010fb8a9d83d2f1701b57eb2da /data/CVE/list.2020
parent: 91bb5119457d5ee8c4e914c1f46c9ad58c751bcd (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/data/CVE/list.2020 b/data/CVE/list.2020
index f2350e775b..be2a86d5c0 100644
--- a/data/CVE/list.2020
+++ b/data/CVE/list.2020
@@ -26774,8 +26774,11 @@ CVE-2020-19489
 	RESERVED
 CVE-2020-19488 (An issue was discovered in box_code_apple.c:119 in Gpac MP4Box 0.8.0,  ...)
 	- gpac 1.0.1+dfsg1-2
+	[buster] - gpac <not-affected> (Vulnerable code introduced later, in version 0.8.0)
+	[stretch] - gpac <not-affected> (Vulnerable code introduced later, in version 0.8.0)
 	NOTE: https://github.com/gpac/gpac/commit/6170024568f4dda310e98ef7508477b425c58d09
 	NOTE: https://github.com/gpac/gpac/issues/1263
+	NOTE: Introduced by https://github.com/gpac/gpac/commit/86d072b6a13baa1a4a90168098a0f8354c24d8cf
 CVE-2020-19487
 	RESERVED
 CVE-2020-19486
author	Roberto C. Sánchez <roberto@debian.org>	2022-01-07 17:22:47 -0500
committer	Roberto C. Sánchez <roberto@debian.org>	2022-01-07 17:22:47 -0500
commit	3bb9e2124259fbb47e2bd40d231cf817c6b9fd95 (patch)
tree	c99012fdaf7c21010fb8a9d83d2f1701b57eb2da /data/CVE/list.2020
parent	91bb5119457d5ee8c4e914c1f46c9ad58c751bcd (diff)