[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DSA 4966-1] gpac security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4966-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
August 31, 2021                       https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : gpac
CVE ID         : CVE-2021-21834 CVE-2021-21836 CVE-2021-21837 CVE-2021-21838 
                 CVE-2021-21839 CVE-2021-21840 CVE-2021-21841 CVE-2021-21842 
                 CVE-2021-21843 CVE-2021-21844 CVE-2021-21845 CVE-2021-21846 
                 CVE-2021-21847 CVE-2021-21848 CVE-2021-21849 CVE-2021-21850 
                 CVE-2021-21853 CVE-2021-21854 CVE-2021-21855 CVE-2021-21857
		 CVE-2021-21858 CVE-2021-21859 CVE-2021-21860 CVE-2021-21861

Multiple security issues were discovered in the GPAC multimedia framework
which could result in denial of service or the execution of arbitrary code.

The oldstable distribution (buster) is not affected.

For the stable distribution (bullseye), these problems have been fixed in
version 1.0.1+dfsg1-4+deb11u1.

We recommend that you upgrade your gpac packages.

For the detailed security status of gpac please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/gpac

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmEumXAACgkQEMKTtsN8
TjY+Cg/9ERkZuIItXpKeYK15UfQ0U1pe43Ojx2vLvhwLw9PgndEx8+HPilultRY/
xabIECwAPsG9T8KuNdZNBxyAvRsRtxMPbxhDgVgv/0T0H94ZPJNze7nwOPLTTPEZ
oYy4mTWq6wRNpQ9UaxWxnQR/nESecCTBREZhfIq791sGcCaTw0JeL5MgbCOCdFOg
R6W3sy94UJFGvFJk8OnILQC+iARs2iTN9xihXeupVHb25Df9937oe2KX5NYMx/gM
hJXDashq5y6pVD0Js4KSAAh0L44iUfYZmVFGRwunQpxfQwtkC+fLDjqRxsbF4AKU
+LRMUHgXhtRwU24MCRs1y0rhPwEweIIxu2zq3pDdVFDkFIMgxco/XyvcYGViwTxg
Wi95z/MC44PKGRc9gn5qi4yW/tl950LuDWO8v3jDDiCcj9bpVu/27mZi43fb6iVn
BDn3UlE2Z2uZyGXD/zPma25DKZc/9MT3srzFNEOey0hsfpD7P8jrnIxMUyelEz7s
ubMJaEXpHdWFs1sB74352Gl5969eurhRuNlYK9d5MM1jBr2SiGhrC+tUjv9RSy1I
fvnyGnNHiYlvgWznAhs5qDBLK1pHxPyIhKBunvCBpmzWF1yMXKShPeYWSIGd6q6Z
OUosAHcHTW67/IJWwfYcrwbvEtUUpJv8cfYPdukj1U/2lId9BgQ=
=I6Dv
-----END PGP SIGNATURE-----


Reply to: