Source: gpac Version: 0.5.2-426-gc5ad4e4+dfsg5-4.1 Severity: important Tags: security upstream
Hi, The following vulnerability was published for gpac. CVE-2019-11222[0]: | gf_bin128_parse in utils/os_divers.c in GPAC 0.7.1 has a buffer | overflow issue for the crypt feature when encountering a | crafted_drm_file.xml file. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2019-11222 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11222 [1] https://github.com/gpac/gpac/commit/f36525c5beafb78959c3a07d6622c9028de348da [2] https://github.com/gpac/gpac/issues/1204 [3] https://github.com/gpac/gpac/issues/1205 Please adjust the affected versions in the BTS as needed. Regards, Salvatore
