Moritz Mühlenhoff [Mon, 19 Jun 2023 21:46:06 +0000 (22:46 +0100)]
Merge gpac (1.0.1+dfsg1-4+deb11u3) import into refs/heads/workingbranch
Aurelien David [Wed, 8 Feb 2023 15:52:00 +0000 (16:52 +0100)]
[PATCH] sgpd box entry: disallow null grouping_type (#2389)
Gbp-Pq: Name CVE-2023-0760.patch
jeanlf [Wed, 31 May 2023 12:09:48 +0000 (14:09 +0200)]
[PATCH] fixed #2480
Gbp-Pq: Name CVE-2023-3012.patch
jeanlf [Thu, 15 Jun 2023 09:28:10 +0000 (11:28 +0200)]
[PATCH] fixed #2493
Gbp-Pq: Name CVE-2023-3291.patch
jeanlf [Wed, 4 Jan 2023 10:31:29 +0000 (11:31 +0100)]
[PATCH] fixed #2365
Gbp-Pq: Name CVE-2023-23145.patch
jeanlf [Wed, 4 Jan 2023 10:25:11 +0000 (11:25 +0100)]
[PATCH] fixed #2364
Gbp-Pq: Name CVE-2023-23144.patch
jeanlf [Wed, 4 Jan 2023 09:56:03 +0000 (10:56 +0100)]
[PATCH] fixed #2366
Gbp-Pq: Name CVE-2023-23143.patch
jeanlf [Mon, 22 May 2023 15:37:24 +0000 (17:37 +0200)]
[PATCH] fixed #2474
Gbp-Pq: Name CVE-2023-2840.patch
jeanlf [Mon, 22 May 2023 15:48:08 +0000 (17:48 +0200)]
[PATCH] fixed #2476
Gbp-Pq: Name CVE-2023-2839.patch
jeanlf [Mon, 22 May 2023 15:40:44 +0000 (17:40 +0200)]
[PATCH] fixed #2475
Gbp-Pq: Name CVE-2023-2838.patch
jeanlf [Mon, 22 May 2023 15:35:19 +0000 (17:35 +0200)]
[PATCH] fixed #2473
Gbp-Pq: Name CVE-2023-2837.patch
jeanlf [Mon, 27 Mar 2023 09:58:57 +0000 (11:58 +0200)]
[PATCH] fixed #2429
Gbp-Pq: Name CVE-2023-1654.patch
Aurelien David [Tue, 7 Feb 2023 15:01:42 +0000 (16:01 +0100)]
[PATCH] load_text: prevent overflow on long lines conversion to utf8 (#2386)
Gbp-Pq: Name CVE-2023-1452.patch
Aurelien David [Fri, 10 Feb 2023 14:36:49 +0000 (15:36 +0100)]
[PATCH] av1: flush samples on parse error (#2387)
Gbp-Pq: Name CVE-2023-1449.patch
Aurelien David [Tue, 7 Feb 2023 17:27:19 +0000 (18:27 +0100)]
[PATCH] m2ts: check descs_size read from input to prevent overflow (#2388)
Gbp-Pq: Name CVE-2023-1448.patch
Aurelien David [Thu, 16 Feb 2023 16:34:58 +0000 (17:34 +0100)]
[PATCH] rfadts: add size guard on dmx (#2400)
Gbp-Pq: Name CVE-2023-0866.patch
Aurelien David [Mon, 13 Feb 2023 14:41:48 +0000 (15:41 +0100)]
[PATCH] mpeg2ts: add section size check (#2395)
Gbp-Pq: Name CVE-2023-0819.patch
Aurelien David [Mon, 13 Feb 2023 14:42:10 +0000 (15:42 +0100)]
[PATCH] fix
a5efec8 to cover more cases (#2397)
Gbp-Pq: Name CVE-2023-0818.patch
jeanlf [Wed, 23 Nov 2022 14:59:43 +0000 (15:59 +0100)]
[PATCH] fixed #2316
Gbp-Pq: Name CVE-2023-0770.patch
jeanlf [Mon, 19 Dec 2022 11:26:02 +0000 (12:26 +0100)]
[PATCH] fixed #2360
Gbp-Pq: Name CVE-2022-47663.patch
jeanlf [Mon, 19 Dec 2022 11:25:50 +0000 (12:25 +0100)]
[PATCH] fixed #2359
Gbp-Pq: Name CVE-2022-47662.patch
Debian Multimedia Maintainers [Mon, 19 Jun 2023 21:46:06 +0000 (22:46 +0100)]
CVE-2022-47661
Origin: https://github.com/gpac/gpac/commit/
aa8fbec874b5e040854effff5309aa445c234618
Reviewed-by: Aron Xu <aron@debian.org>
From
aa8fbec874b5e040854effff5309aa445c234618 Mon Sep 17 00:00:00 2001
From: jeanlf <jeanlf@gpac.io>
Date: Mon, 19 Dec 2022 11:50:31 +0100
Subject: [PATCH] fixed #2358
Gbp-Pq: Name CVE-2022-47661.patch
jeanlf [Sat, 17 Dec 2022 11:28:51 +0000 (12:28 +0100)]
[PATCH] fixed #2357
Gbp-Pq: Name CVE-2022-47660.patch
jeanlf [Sat, 17 Dec 2022 11:11:34 +0000 (12:11 +0100)]
[PATCH] fixed #2355
Gbp-Pq: Name CVE-2022-47657.patch
jeanlf [Mon, 12 Dec 2022 09:45:38 +0000 (10:45 +0100)]
[PATCH] fixed #2346
Gbp-Pq: Name CVE-2022-47095.patch
jeanlf [Mon, 12 Dec 2022 09:35:51 +0000 (10:35 +0100)]
[PATCH] fixed #2345
Gbp-Pq: Name CVE-2022-47094.patch
jeanlf [Mon, 12 Dec 2022 09:14:43 +0000 (10:14 +0100)]
[PATCH] fixed #2343
Gbp-Pq: Name CVE-2022-47091.patch
jeanlf [Mon, 12 Dec 2022 08:42:30 +0000 (09:42 +0100)]
[PATCH] fixed #2337
Gbp-Pq: Name CVE-2022-47086.patch
jeanlf [Mon, 14 Nov 2022 13:45:13 +0000 (14:45 +0100)]
[PATCH] fixed #2315
Gbp-Pq: Name CVE-2022-45343.patch
jeanlf [Fri, 4 Nov 2022 08:26:34 +0000 (09:26 +0100)]
[PATCH] fixed #2295
Gbp-Pq: Name CVE-2022-45283.patch
jeanlf [Tue, 11 Oct 2022 08:37:25 +0000 (10:37 +0200)]
[PATCH] fixed #2285
Gbp-Pq: Name CVE-2022-43255.patch
Debian Multimedia Maintainers [Mon, 19 Jun 2023 21:46:06 +0000 (22:46 +0100)]
CVE-2022-38530
Origin: https://github.com/gpac/gpac/commit/
4e56ad72ac1afb4e049a10f2d99e7512d7141f9d
Reviewed-by: Aron Xu <aron@debian.org>
From
4e56ad72ac1afb4e049a10f2d99e7512d7141f9d Mon Sep 17 00:00:00 2001
From: jeanlf <jeanlf@gpac.io>
Date: Tue, 12 Jul 2022 18:29:36 +0200
Subject: [PATCH] fixed #2216
Gbp-Pq: Name CVE-2022-38530.patch
jeanlf [Tue, 12 Jul 2022 16:43:33 +0000 (18:43 +0200)]
[PATCH] fixed #2218
Gbp-Pq: Name CVE-2022-36190_36191.patch
jeanlf [Tue, 19 Apr 2022 07:08:45 +0000 (09:08 +0200)]
[PATCH] fixed #2173
Gbp-Pq: Name CVE-2022-29537.patch
jeanlf [Tue, 8 Feb 2022 15:23:12 +0000 (16:23 +0100)]
[PATCH] fixed #2109
Gbp-Pq: Name CVE-2022-27147.patch
jeanlf [Tue, 8 Feb 2022 15:10:15 +0000 (16:10 +0100)]
[PATCH] fixed #2108
Gbp-Pq: Name CVE-2022-27145.patch
jeanlf [Thu, 10 Mar 2022 14:43:11 +0000 (15:43 +0100)]
[PATCH] fixed #2138
Gbp-Pq: Name CVE-2022-26967_partial.patch
Aurelien David [Mon, 17 Jan 2022 14:35:59 +0000 (15:35 +0100)]
[PATCH] fix overflow on script_dec (#2052)
Gbp-Pq: Name CVE-2022-24578.patch
jeanlf [Mon, 17 Jan 2022 09:40:43 +0000 (10:40 +0100)]
[PATCH] fixed #2046
Gbp-Pq: Name CVE-2022-24577.patch
Debian Multimedia Maintainers [Mon, 19 Jun 2023 21:46:06 +0000 (22:46 +0100)]
CVE-2022-24574
Origin: https://github.com/gpac/gpac/commit/
9f8510835b97a729baf3646a3171bf51b4a8592e
Reviewed-by: Aron Xu <aron@debian.org>
From
9f8510835b97a729baf3646a3171bf51b4a8592e Mon Sep 17 00:00:00 2001
From: jeanlf <jeanlf@gpac.io>
Date: Wed, 19 Jan 2022 12:12:43 +0100
Subject: [PATCH] fixed #2055
Gbp-Pq: Name CVE-2022-24574.patch
jeanlf [Mon, 12 Dec 2022 08:35:12 +0000 (09:35 +0100)]
[PATCH] fixed #2333
Gbp-Pq: Name CVE-2022-4202.patch
Debian Multimedia Maintainers [Mon, 19 Jun 2023 21:46:06 +0000 (22:46 +0100)]
CVE-2022-3957
Origin: https://github.com/gpac/gpac/commit/
2191e66aa7df750e8ef01781b1930bea87b713bb
Reviewed-by: Aron Xu <aron@debian.org>
From
2191e66aa7df750e8ef01781b1930bea87b713bb Mon Sep 17 00:00:00 2001
From: jeanlf <jeanlf@gpac.io>
Date: Mon, 7 Nov 2022 08:59:52 +0100
Subject: [PATCH] fixed mem leak in sgv parse error
Gbp-Pq: Name CVE-2022-3957.patch
Debian Multimedia Maintainers [Mon, 19 Jun 2023 21:46:06 +0000 (22:46 +0100)]
CVE-2022-3222
Origin: https://github.com/gpac/gpac/commit/
4e7736d7ec7bf64026daa611da951993bb42fdaf
Reviewed-by: Aron Xu <aron@debian.org>
From
4e7736d7ec7bf64026daa611da951993bb42fdaf Mon Sep 17 00:00:00 2001
From: jeanlf <jeanlf@gpac.io>
Date: Mon, 12 Sep 2022 10:54:16 +0200
Subject: [PATCH] fixed #2238
Gbp-Pq: Name CVE-2022-3222.patch
jeanlf [Tue, 12 Jul 2022 16:00:35 +0000 (18:00 +0200)]
[PATCH] fixed #2213
Gbp-Pq: Name CVE-2022-2454.patch
jeanlf [Wed, 18 May 2022 09:49:49 +0000 (11:49 +0200)]
[PATCH] fixed #2194
Gbp-Pq: Name CVE-2022-1795.patch
jeanlf [Tue, 19 Apr 2022 07:15:58 +0000 (09:15 +0200)]
[PATCH] fixed #2175
Gbp-Pq: Name CVE-2022-1441.patch
jeanlf [Thu, 31 Mar 2022 11:57:05 +0000 (13:57 +0200)]
[PATCH] fixed #2159
Gbp-Pq: Name CVE-2022-1222.patch
jeanlf [Thu, 17 Mar 2022 11:00:55 +0000 (12:00 +0100)]
[PATCH] fixed #2146
Gbp-Pq: Name CVE-2022-1035.patch
jeanlf [Fri, 4 Nov 2022 08:18:47 +0000 (09:18 +0100)]
[PATCH] fixed #2294
Gbp-Pq: Name CVE-2022-45202.patch
jeanlf [Mon, 3 Jan 2022 10:24:15 +0000 (11:24 +0100)]
[PATCH] fixed #2008
Gbp-Pq: Name CVE-2021-46047.patch
Debian Multimedia Maintainers [Mon, 19 Jun 2023 21:46:06 +0000 (22:46 +0100)]
CVE-2021-46038to46046_46049_46051
Origin: https://github.com/gpac/gpac/commit/
f5a778edd1febd574ff9558d2faa57133bdb4a5f
Reviewed-by: Aron Xu <aron@debian.org>
From
f5a778edd1febd574ff9558d2faa57133bdb4a5f Mon Sep 17 00:00:00 2001
From: jeanlf <jeanlf@gpac.io>
Date: Mon, 3 Jan 2022 11:12:21 +0100
Subject: [PATCH] fixed #1999
Gbp-Pq: Name CVE-2021-46038to46046_46049_46051.patch
jeanlf [Wed, 15 Dec 2021 08:49:28 +0000 (09:49 +0100)]
[PATCH] fixed #1990
Gbp-Pq: Name CVE-2021-45831.patch
jeanlf [Tue, 14 Dec 2021 09:00:33 +0000 (10:00 +0100)]
[PATCH] fixed #1982
Gbp-Pq: Name CVE-2021-45767.patch
Debian Multimedia Maintainers [Mon, 19 Jun 2023 21:46:06 +0000 (22:46 +0100)]
CVE-2021-45764
Origin: https://github.com/gpac/gpac/commit/
e54df17892bee983d09d9437e44e6a1528fb46cb
Reviewed-by: Aron Xu <aron@debian.org>
From
e54df17892bee983d09d9437e44e6a1528fb46cb Mon Sep 17 00:00:00 2001
From: jeanlf <jeanlf@gpac.io>
Date: Mon, 13 Dec 2021 11:42:13 +0100
Subject: [PATCH] fixed #1971
Gbp-Pq: Name CVE-2021-45764.patch
jeanlf [Mon, 13 Dec 2021 12:04:59 +0000 (13:04 +0100)]
[PATCH] fixed #1974
Gbp-Pq: Name CVE-2021-45763.patch
jeanlf [Mon, 13 Dec 2021 12:31:01 +0000 (13:31 +0100)]
[PATCH] fixed #1978
Gbp-Pq: Name CVE-2021-45762.patch
jeanlf [Mon, 13 Dec 2021 10:23:01 +0000 (11:23 +0100)]
[PATCH] fixed #1966
Gbp-Pq: Name CVE-2021-45760.patch
jeanlf [Tue, 14 Dec 2021 10:34:46 +0000 (11:34 +0100)]
[PATCH] fixed #1973
Gbp-Pq: Name CVE-2021-45297.patch
jeanlf [Fri, 10 Dec 2021 09:02:48 +0000 (10:02 +0100)]
[PATCH] fixed #1958
Gbp-Pq: Name CVE-2021-45292.patch
jeanlf [Fri, 10 Dec 2021 08:10:49 +0000 (09:10 +0100)]
[PATCH] fixed #1955
Gbp-Pq: Name CVE-2021-45291.patch
jeanlf [Mon, 13 Dec 2021 10:21:26 +0000 (11:21 +0100)]
[PATCH] fixed #1965
Gbp-Pq: Name CVE-2021-45267.patch
jeanlf [Mon, 13 Dec 2021 12:18:49 +0000 (13:18 +0100)]
[PATCH] fixed #1975
Gbp-Pq: Name CVE-2021-45263.patch
jeanlf [Mon, 13 Dec 2021 13:21:50 +0000 (14:21 +0100)]
[PATCH] fixed #1980
Gbp-Pq: Name CVE-2021-45262.patch
jeanlf [Mon, 10 May 2021 09:26:57 +0000 (11:26 +0200)]
[PATCH] fixed #1785 (fuzz)
Gbp-Pq: Name CVE-2021-33366.patch
jeanlf [Mon, 10 May 2021 09:24:17 +0000 (11:24 +0200)]
[PATCH] fixed #1784 (fuzz)
Gbp-Pq: Name CVE-2021-33365.patch
jeanlf [Mon, 10 May 2021 09:18:59 +0000 (11:18 +0200)]
[PATCH] fixed #1783 (fuzz)
Gbp-Pq: Name CVE-2021-33364.patch
jeanlf [Mon, 10 May 2021 09:31:19 +0000 (11:31 +0200)]
[PATCH] fixed #1786 (fuzz)
Gbp-Pq: Name CVE-2021-33363.patch
jeanlf [Mon, 10 May 2021 09:14:03 +0000 (11:14 +0200)]
[PATCH] fixed #1782 (fuzz)
Gbp-Pq: Name CVE-2021-33361.patch
jeanlf [Thu, 9 Sep 2021 13:04:12 +0000 (15:04 +0200)]
[PATCH] fixed #1912
Gbp-Pq: Name CVE-2021-41459.patch
jeanlf [Thu, 9 Sep 2021 12:57:35 +0000 (14:57 +0200)]
[PATCH] fixed #1909
Gbp-Pq: Name CVE-2021-41457.patch
jeanlf [Thu, 9 Sep 2021 12:36:47 +0000 (14:36 +0200)]
[PATCH] fixed #1910 #1911
Gbp-Pq: Name CVE-2021-41456.patch
jeanlf [Wed, 1 Sep 2021 12:04:10 +0000 (14:04 +0200)]
[PATCH] fixed #1906
Gbp-Pq: Name CVE-2021-40944.patch
jeanlf [Mon, 30 Aug 2021 12:43:17 +0000 (14:43 +0200)]
[PATCH] fixed #1883
Gbp-Pq: Name CVE-2021-40608.patch
jeanlf [Mon, 30 Aug 2021 12:34:37 +0000 (14:34 +0200)]
[PATCH] fixed #1879
Gbp-Pq: Name CVE-2021-40607.patch
jeanlf [Mon, 30 Aug 2021 12:27:49 +0000 (14:27 +0200)]
[PATCH] fixed #1876
Gbp-Pq: Name CVE-2021-40592.patch
jeanlf [Wed, 1 Sep 2021 11:45:04 +0000 (13:45 +0200)]
[PATCH] fixed #1904
Gbp-Pq: Name CVE-2021-40576_40606_40609.patch
jeanlf [Wed, 1 Sep 2021 11:50:54 +0000 (13:50 +0200)]
[PATCH] fixed #1905
Gbp-Pq: Name CVE-2021-40575.patch
jeanlf [Mon, 30 Aug 2021 14:57:38 +0000 (16:57 +0200)]
[PATCH] fixed #1897
Gbp-Pq: Name CVE-2021-40574.patch
jeanlf [Mon, 30 Aug 2021 14:15:32 +0000 (16:15 +0200)]
[PATCH] fixed #1893
Gbp-Pq: Name CVE-2021-40572.patch
jeanlf [Mon, 30 Aug 2021 14:24:05 +0000 (16:24 +0200)]
[PATCH] fixed #1895
Gbp-Pq: Name CVE-2021-40571.patch
jeanlf [Mon, 30 Aug 2021 15:15:34 +0000 (17:15 +0200)]
[PATCH] fixed #1899
Gbp-Pq: Name CVE-2021-40570.patch
jeanlf [Mon, 30 Aug 2021 13:55:13 +0000 (15:55 +0200)]
[PATCH] fixed #1890
Gbp-Pq: Name CVE-2021-40569.patch
jeanlf [Sat, 17 Dec 2022 11:06:16 +0000 (12:06 +0100)]
[PATCH] fixed #2354
Gbp-Pq: Name CVE-2022-47659.patch
jeanlf [Mon, 30 Aug 2021 15:20:00 +0000 (17:20 +0200)]
[PATCH] fixed #1900
Gbp-Pq: Name CVE-2021-40568.patch
jeanlf [Mon, 30 Aug 2021 12:53:51 +0000 (14:53 +0200)]
[PATCH] fixed #1885
Gbp-Pq: Name CVE-2021-40567.patch
jeanlf [Mon, 30 Aug 2021 13:46:16 +0000 (15:46 +0200)]
[PATCH] fixed #1887
Gbp-Pq: Name CVE-2021-40566.patch
jeanlf [Mon, 30 Aug 2021 15:29:13 +0000 (17:29 +0200)]
[PATCH] fixed #1902
Gbp-Pq: Name CVE-2021-40565.patch
jeanlf [Mon, 30 Aug 2021 15:09:02 +0000 (17:09 +0200)]
[PATCH] fixed #1898
Gbp-Pq: Name CVE-2021-40564.patch
jeanlf [Mon, 30 Aug 2021 14:06:09 +0000 (16:06 +0200)]
[PATCH] fixed #1892
Gbp-Pq: Name CVE-2021-40563.patch
jeanlf [Mon, 30 Aug 2021 15:26:28 +0000 (17:26 +0200)]
[PATCH] fixed #1901
Gbp-Pq: Name CVE-2021-40562.patch
Debian Multimedia Maintainers [Mon, 19 Jun 2023 21:46:06 +0000 (22:46 +0100)]
CVE-2021-40559
Origin: https://github.com/gpac/gpac/commit/
70607fc71a671cf48a05e013a4e411429373dce7
Reviewed-by: Aron Xu <aron@debian.org>
From
70607fc71a671cf48a05e013a4e411429373dce7 Mon Sep 17 00:00:00 2001
From: Aurelien David <aurelien.david@telecom-paristech.fr>
Date: Tue, 24 Aug 2021 18:16:50 +0200
Subject: [PATCH] add some null guards to prevent segfaults
closes #1884, #1886
Gbp-Pq: Name CVE-2021-40559.patch
Debian Multimedia Maintainers [Mon, 19 Jun 2023 21:46:06 +0000 (22:46 +0100)]
CVE-2021-36417
Backported from https://github.com/gpac/gpac/commit/
737e1f39da80e02912953269966d89afd196ad30
Backported from https://github.com/gpac/gpac/commit/
737e1f39da80e02912953269966d89afd196ad30
Gbp-Pq: Name CVE-2021-36417.patch
jeanlf [Mon, 5 Jul 2021 14:50:03 +0000 (16:50 +0200)]
[PATCH] fixed #1840
Gbp-Pq: Name CVE-2021-36414.patch
jeanlf [Mon, 5 Jul 2021 14:41:49 +0000 (16:41 +0200)]
[PATCH] fixed #1838
Gbp-Pq: Name CVE-2021-36412.patch
jeanlf [Tue, 1 Feb 2022 14:28:23 +0000 (15:28 +0100)]
[PATCH] fixed #2092
Gbp-Pq: Name CVE-2021-4043.patch
Debian Multimedia Maintainers [Mon, 19 Jun 2023 21:46:06 +0000 (22:46 +0100)]
talos-2021-1297-2
Backport of https://github.com/gpac/gpac/commit/
592ba2689a3f2fc787371eda490fde4f84e60315
Backport of https://github.com/gpac/gpac/commit/
592ba2689a3f2fc787371eda490fde4f84e60315
Gbp-Pq: Name talos-2021-1297-2.patch
Debian Multimedia Maintainers [Mon, 19 Jun 2023 21:46:06 +0000 (22:46 +0100)]
talos-2021-1299
Backport of https://github.com/gpac/gpac/commit/
bbd741e0e5a6e7e1e90a73c350acc061dde9450b
Backport of https://github.com/gpac/gpac/commit/
bbd741e0e5a6e7e1e90a73c350acc061dde9450b
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1299
Gbp-Pq: Name talos-2021-1299.patch
Debian Multimedia Maintainers [Mon, 19 Jun 2023 21:46:06 +0000 (22:46 +0100)]
talos-2021-1298
Backport of https://github.com/gpac/gpac/commit/
8cd33e8977fd5f4215e4b67c309fd403762bfeb7
Backport of https://github.com/gpac/gpac/commit/
8cd33e8977fd5f4215e4b67c309fd403762bfeb7
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1298
Gbp-Pq: Name talos-2021-1298.patch
Debian Multimedia Maintainers [Mon, 19 Jun 2023 21:46:06 +0000 (22:46 +0100)]
talos-2021-1297
Backport of https://github.com/gpac/gpac/commit/
b515fd04f5f00f4a99df741042f1efb31ad56351
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
Backport of https://github.com/gpac/gpac/commit/
b515fd04f5f00f4a99df741042f1efb31ad56351
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1297
Gbp-Pq: Name talos-2021-1297.patch
jeanlf [Fri, 9 Apr 2021 09:17:40 +0000 (11:17 +0200)]
[PATCH] fixed #1738
Gbp-Pq: Name CVE-2021-31262.patch
projects / gpac.git / log