Bug#940855: gpac: CVE-2018-21017
Source: gpac
Version: 0.7.1+dfsg1-3
Severity: normal
Tags: security upstream
Forwarded: https://github.com/gpac/gpac/issues/1183
Hi,
The following vulnerability was published for gpac. The issue does not
affeect unstable (please double check though). Filling the bug mainly
for tracking, the version in experimental is affected and issue would
be fixed with v0.8.0 upstream.
CVE-2018-21017[0]:
| GPAC 0.7.1 has a memory leak in dinf_Read in isomedia/box_code_base.c.
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2018-21017
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21017
[1] https://github.com/gpac/gpac/issues/1183
Regards,
Salvatore
Reply to: