[Git][security-tracker-team/security-tracker][master] Add two more binaryen issues

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
22e2ad0f by Salvatore Bonaccorso at 2022-01-08T10:31:08+01:00
Add two more binaryen issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1552,13 +1552,17 @@ CVE-2021-46051 (A Pointer Dereference Vulnerability 
exists in GPAC 1.0.1 via the
        NOTE: https://github.com/gpac/gpac/issues/2011
        NOTE: 
https://github.com/gpac/gpac/commit/f5a778edd1febd574ff9558d2faa57133bdb4a5f
 CVE-2021-46050 (A Stack Overflow vulnerability exists in Binaryen 103 via the 
printf_c ...)
-       TODO: check
+       - binaryen <unfixed> (unimportant)
+       NOTE: https://github.com/WebAssembly/binaryen/issues/4391
+       NOTE: Crash in CLI tool, no security impact
 CVE-2021-46049 (A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via 
the gf_fi ...)
        - gpac <unfixed>
        NOTE: https://github.com/gpac/gpac/issues/2013
        NOTE: 
https://github.com/gpac/gpac/commit/f5a778edd1febd574ff9558d2faa57133bdb4a5f
 CVE-2021-46048 (A Denial of Service vulnerability exists in Binaryen 104 due 
to an ass ...)
-       TODO: check
+       - binaryen <unfixed> (unimportant)
+       NOTE: https://github.com/WebAssembly/binaryen/issues/4412
+       NOTE: Crash in CLI tool, no security impact
 CVE-2021-46047 (A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via 
the gf_hi ...)
        - gpac <unfixed>
        NOTE: https://github.com/gpac/gpac/issues/2008



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22e2ad0fc83f166074a462e62735f9c5c1a17ff0

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22e2ad0fc83f166074a462e62735f9c5c1a17ff0
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits