• [SECURITY] [DSA 4966-1] gpac security update

    From Moritz Muehlenhoff@21:1/5 to All on Tue Aug 31 23:10:02 2021
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-4966-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff August 31, 2021 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : gpac
    CVE ID : CVE-2021-21834 CVE-2021-21836 CVE-2021-21837 CVE-2021-21838
    CVE-2021-21839 CVE-2021-21840 CVE-2021-21841 CVE-2021-21842
    CVE-2021-21843 CVE-2021-21844 CVE-2021-21845 CVE-2021-21846
    CVE-2021-21847 CVE-2021-21848 CVE-2021-21849 CVE-2021-21850
    CVE-2021-21853 CVE-2021-21854 CVE-2021-21855 CVE-2021-21857
    CVE-2021-21858 CVE-2021-21859 CVE-2021-21860 CVE-2021-21861

    Multiple security issues were discovered in the GPAC multimedia framework
    which could result in denial of service or the execution of arbitrary code.

    The oldstable distribution (buster) is not affected.

    For the stable distribution (bullseye), these problems have been fixed in version 1.0.1+dfsg1-4+deb11u1.

    We recommend that you upgrade your gpac packages.

    For the detailed security status of gpac please refer to
    its security tracker page at:
    https://security-tracker.debian.org/tracker/gpac

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org
    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmEumXAACgkQEMKTtsN8 TjY+Cg/9ERkZuIItXpKeYK15UfQ0U1pe43Ojx2vLvhwLw9PgndEx8+HPilultRY/ xabIECwAPsG9T8KuNdZNBxyAvRsRtxMPbxhDgVgv/0T0H94ZPJNze7nwOPLTTPEZ oYy4mTWq6wRNpQ9UaxWxnQR/nESecCTBREZhfIq791sGcCaTw0JeL5MgbCOCdFOg R6W3sy94UJFGvFJk8OnILQC+iARs2iTN9xihXeupVHb25Df9937oe2KX5NYMx/gM hJXDashq5y6pVD0Js4KSAAh0L44iUfYZmVFGRwunQpxfQwtkC+fLDjqRxsbF4AKU +LRMUHgXhtRwU24MCRs1y0rhPwEweIIxu2zq3pDdVFDkFIMgxco/XyvcYGViwTxg Wi95z/MC44PKGRc9gn5qi4yW/tl950LuDWO8v3jDDiCcj9bpVu/27mZi43fb6iVn BDn3UlE2Z2uZyGXD/zPma25DKZc/9MT3srzFNEOey0hsfpD7P8jrnIxMUyelEz7s ubMJaEXpHdWFs1sB74352Gl5969eurhRuNlYK9d5MM1jBr2SiGhrC+tUjv9RSy1I fvnyGnNHiYlvgWznAhs5qDBLK1pHxPyIhKBunvCBpmzWF1yMXKShPeYWSIGd6q6Z OUosAHcHTW67/IJWwfYcrwbvEtUUpJv8cfYPdukj1U/2lId9BgQ=
    =I6Dv
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)