Ubuntu CVE Tracker

Merge ~yomonokio/ubuntu-cve-tracker:gst-plugins-bad into ubuntu-cve-tracker:master

Proposed by Chrisa Oikonomou on 2024-04-26

Status:	Merged
Merged at revision:	489cb6ba11c18a06040f91c84312aa5e0daa86a6
Proposed branch:	~yomonokio/ubuntu-cve-tracker:gst-plugins-bad
Merge into:	ubuntu-cve-tracker:master
Diff against target:	195 lines (+38/-38) 6 files modified active/CVE-2021-3185 (+3/-3) active/CVE-2023-40474 (+6/-6) active/CVE-2023-40475 (+6/-6) active/CVE-2023-40476 (+6/-6) active/CVE-2023-44446 (+6/-6) active/CVE-2024-0444 (+11/-11)
Related bugs:	Link a bug report

Reviewer	Review Type	Date Requested	Status
Eduardo Barretto		2024-04-26	Approve on 2024-04-26
Review via email: mp+465071@code.launchpad.net

Commit message

gst-plugins-bad CVEs triage

Revision history for this message

Eduardo Barretto (ebarretto) wrote on 2024-04-26:

lgtm, thanks!

review: Approve

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk

Subscribers

People subscribed via source and target branches

to all changes:

Aravind

Chrisa Oikonomou

Philip Roche

Robert C Jennings

Simon Quigley

Steve Beattie

Ubuntu Security Team

1	diff --git a/active/CVE-2021-3185 b/active/CVE-2021-3185
2	index 3a9faa9..1e14dbb 100644
3	--- a/active/CVE-2021-3185
4	+++ b/active/CVE-2021-3185
5	@@ -24,11 +24,11 @@ Patches_gst-plugins-bad1.0:
6	upstream_gst-plugins-bad1.0: released (1.18.1-1)
7	precise/esm_gst-plugins-bad1.0: DNE
8	trusty_gst-plugins-bad1.0: ignored (end of standard support)
9	-trusty/esm_gst-plugins-bad1.0: needs-triage
10	+trusty/esm_gst-plugins-bad1.0: needed
11	xenial_gst-plugins-bad1.0: ignored (end of standard support, was needs-triage)
12	-esm-apps/xenial_gst-plugins-bad1.0: needs-triage
13	+esm-apps/xenial_gst-plugins-bad1.0: needed
14	bionic_gst-plugins-bad1.0: ignored (end of standard support, was needs-triage)
15	-esm-apps/bionic_gst-plugins-bad1.0: needs-triage
16	+esm-apps/bionic_gst-plugins-bad1.0: needed
17	focal_gst-plugins-bad1.0: not-affected (1.16.3-0ubuntu1)
18	esm-apps/focal_gst-plugins-bad1.0: not-affected (1.16.3-0ubuntu1)
19	groovy_gst-plugins-bad1.0: ignored (end of life)
20	diff --git a/active/CVE-2023-40474 b/active/CVE-2023-40474
21	index 75823c3..56588ef 100644
22	--- a/active/CVE-2023-40474
23	+++ b/active/CVE-2023-40474
24	@@ -20,9 +20,9 @@ Assigned-to:
25	CVSS:
26
27	Patches_gst-plugins-bad0.10:
28	-upstream_gst-plugins-bad0.10: needs-triage
29	+upstream_gst-plugins-bad0.10: needed
30	trusty_gst-plugins-bad0.10: ignored (end of standard support)
31	-trusty/esm_gst-plugins-bad0.10: needs-triage
32	+trusty/esm_gst-plugins-bad0.10: needed
33	xenial_gst-plugins-bad0.10: ignored (end of standard support)
34	bionic_gst-plugins-bad0.10: ignored (end of standard support)
35	focal_gst-plugins-bad0.10: DNE
36	@@ -34,13 +34,13 @@ devel_gst-plugins-bad0.10: DNE
37	Patches_gst-plugins-bad1.0:
38	upstream: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/ce17e968e4cf900d28ca5b46f6e095febc42b4f0
39	upstream: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/f73fc41f2ca6a0cd4e883aee64bf8e1c15ff68ce (1.22.6)
40	-upstream_gst-plugins-bad1.0: needs-triage
41	+upstream_gst-plugins-bad1.0: released (1.22.6)
42	trusty_gst-plugins-bad1.0: ignored (end of standard support)
43	-trusty/esm_gst-plugins-bad1.0: needs-triage
44	+trusty/esm_gst-plugins-bad1.0: needed
45	xenial_gst-plugins-bad1.0: ignored (end of standard support)
46	-esm-apps/xenial_gst-plugins-bad1.0: needs-triage
47	+esm-apps/xenial_gst-plugins-bad1.0: needed
48	bionic_gst-plugins-bad1.0: ignored (end of standard support)
49	-esm-apps/bionic_gst-plugins-bad1.0: needs-triage
50	+esm-apps/bionic_gst-plugins-bad1.0: needed
51	focal_gst-plugins-bad1.0: released (1.16.3-0ubuntu1.1)
52	esm-apps/focal_gst-plugins-bad1.0: not-affected (1.16.3-0ubuntu1.1)
53	jammy_gst-plugins-bad1.0: released (1.20.3-0ubuntu1.1)
54	diff --git a/active/CVE-2023-40475 b/active/CVE-2023-40475
55	index 70dae24..d3ecd9c 100644
56	--- a/active/CVE-2023-40475
57	+++ b/active/CVE-2023-40475
58	@@ -20,9 +20,9 @@ Assigned-to:
59	CVSS:
60
61	Patches_gst-plugins-bad0.10:
62	-upstream_gst-plugins-bad0.10: needs-triage
63	+upstream_gst-plugins-bad0.10: needed
64	trusty_gst-plugins-bad0.10: ignored (end of standard support)
65	-trusty/esm_gst-plugins-bad0.10: needs-triage
66	+trusty/esm_gst-plugins-bad0.10: needed
67	xenial_gst-plugins-bad0.10: ignored (end of standard support)
68	bionic_gst-plugins-bad0.10: ignored (end of standard support)
69	focal_gst-plugins-bad0.10: DNE
70	@@ -34,13 +34,13 @@ devel_gst-plugins-bad0.10: DNE
71	Patches_gst-plugins-bad1.0:
72	upstream: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/72742dee30cce7bf909639f82de119871566ce39
73	upstream: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/1edd1c38dcc5d27e7c5649d999ee8278872a16d4 (1.22.6)
74	-upstream_gst-plugins-bad1.0: needs-triage
75	+upstream_gst-plugins-bad1.0: released (1.22.6)
76	trusty_gst-plugins-bad1.0: ignored (end of standard support)
77	-trusty/esm_gst-plugins-bad1.0: needs-triage
78	+trusty/esm_gst-plugins-bad1.0: needed
79	xenial_gst-plugins-bad1.0: ignored (end of standard support)
80	-esm-apps/xenial_gst-plugins-bad1.0: needs-triage
81	+esm-apps/xenial_gst-plugins-bad1.0: needed
82	bionic_gst-plugins-bad1.0: ignored (end of standard support)
83	-esm-apps/bionic_gst-plugins-bad1.0: needs-triage
84	+esm-apps/bionic_gst-plugins-bad1.0: needed
85	focal_gst-plugins-bad1.0: released (1.16.3-0ubuntu1.1)
86	esm-apps/focal_gst-plugins-bad1.0: not-affected (1.16.3-0ubuntu1.1)
87	jammy_gst-plugins-bad1.0: released (1.20.3-0ubuntu1.1)
88	diff --git a/active/CVE-2023-40476 b/active/CVE-2023-40476
89	index 0ed2896..eb4556b 100644
90	--- a/active/CVE-2023-40476
91	+++ b/active/CVE-2023-40476
92	@@ -19,9 +19,9 @@ Assigned-to:
93	CVSS:
94
95	Patches_gst-plugins-bad0.10:
96	-upstream_gst-plugins-bad0.10: needs-triage
97	+upstream_gst-plugins-bad0.10: needed
98	trusty_gst-plugins-bad0.10: ignored (end of standard support)
99	-trusty/esm_gst-plugins-bad0.10: needs-triage
100	+trusty/esm_gst-plugins-bad0.10: not-affected (code not present)
101	xenial_gst-plugins-bad0.10: ignored (end of standard support)
102	bionic_gst-plugins-bad0.10: ignored (end of standard support)
103	focal_gst-plugins-bad0.10: DNE
104	@@ -33,13 +33,13 @@ devel_gst-plugins-bad0.10: DNE
105	Patches_gst-plugins-bad1.0:
106	upstream: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/ff91a3d8d6f7e2412c44663bf30fad5c7fdbc9d9
107	upstream: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/fddda166222a067d0e511950a0a8cfb9f5a521b7 (1.22.6)
108	-upstream_gst-plugins-bad1.0: needs-triage
109	+upstream_gst-plugins-bad1.0: released (1.22.6)
110	trusty_gst-plugins-bad1.0: ignored (end of standard support)
111	-trusty/esm_gst-plugins-bad1.0: needs-triage
112	+trusty/esm_gst-plugins-bad1.0: not-affected (code not present)
113	xenial_gst-plugins-bad1.0: ignored (end of standard support)
114	-esm-apps/xenial_gst-plugins-bad1.0: needs-triage
115	+esm-apps/xenial_gst-plugins-bad1.0: needed
116	bionic_gst-plugins-bad1.0: ignored (end of standard support)
117	-esm-apps/bionic_gst-plugins-bad1.0: needs-triage
118	+esm-apps/bionic_gst-plugins-bad1.0: needed
119	focal_gst-plugins-bad1.0: released (1.16.3-0ubuntu1.1)
120	esm-apps/focal_gst-plugins-bad1.0: not-affected (1.16.3-0ubuntu1.1)
121	jammy_gst-plugins-bad1.0: released (1.20.3-0ubuntu1.1)
122	diff --git a/active/CVE-2023-44446 b/active/CVE-2023-44446
123	index 592a4ce..dc1606c 100644
124	--- a/active/CVE-2023-44446
125	+++ b/active/CVE-2023-44446
126	@@ -19,9 +19,9 @@ Assigned-to:
127	CVSS:
128
129	Patches_gst-plugins-bad0.10:
130	-upstream_gst-plugins-bad0.10: needs-triage
131	+upstream_gst-plugins-bad0.10: needed
132	trusty_gst-plugins-bad0.10: ignored (end of standard support)
133	-trusty/esm_gst-plugins-bad0.10: needs-triage
134	+trusty/esm_gst-plugins-bad0.10: needed
135	xenial_gst-plugins-bad0.10: ignored (end of standard support)
136	bionic_gst-plugins-bad0.10: ignored (end of standard support)
137	focal_gst-plugins-bad0.10: DNE
138	@@ -33,13 +33,13 @@ devel_gst-plugins-bad0.10: DNE
139	Patches_gst-plugins-bad1.0:
140	upstream: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/274551d450e443a8c71baa95e3f8d5dad212737f
141	upstream: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/7dfaa57b6f9b55f17ffe824bd8988bb71ae11353 (1.22.7)
142	-upstream_gst-plugins-bad1.0: needs-triage
143	+upstream_gst-plugins-bad1.0: released (1.22.7)
144	trusty_gst-plugins-bad1.0: ignored (end of standard support)
145	-trusty/esm_gst-plugins-bad1.0: needs-triage
146	+trusty/esm_gst-plugins-bad1.0: needed
147	xenial_gst-plugins-bad1.0: ignored (end of standard support)
148	-esm-apps/xenial_gst-plugins-bad1.0: needs-triage
149	+esm-apps/xenial_gst-plugins-bad1.0: needed
150	bionic_gst-plugins-bad1.0: ignored (end of standard support)
151	-esm-apps/bionic_gst-plugins-bad1.0: needs-triage
152	+esm-apps/bionic_gst-plugins-bad1.0: needed
153	focal_gst-plugins-bad1.0: released (1.16.3-0ubuntu1.1)
154	esm-apps/focal_gst-plugins-bad1.0: not-affected (1.16.3-0ubuntu1.1)
155	jammy_gst-plugins-bad1.0: released (1.20.3-0ubuntu1.1)
156	diff --git a/active/CVE-2024-0444 b/active/CVE-2024-0444
157	index f426319..3a68dcb 100644
158	--- a/active/CVE-2024-0444
159	+++ b/active/CVE-2024-0444
160	@@ -16,9 +16,9 @@ Assigned-to:
161	CVSS:
162
163	Patches_gst-plugins-bad0.10:
164	-upstream_gst-plugins-bad0.10: needs-triage
165	+upstream_gst-plugins-bad0.10: needed
166	trusty_gst-plugins-bad0.10: ignored (end of standard support)
167	-trusty/esm_gst-plugins-bad0.10: needs-triage
168	+trusty/esm_gst-plugins-bad0.10: not-affected (code not present)
169	xenial_gst-plugins-bad0.10: DNE
170	bionic_gst-plugins-bad0.10: DNE
171	focal_gst-plugins-bad0.10: DNE
172	@@ -29,14 +29,14 @@ devel_gst-plugins-bad0.10: DNE
173	Patches_gst-plugins-bad1.0:
174	upstream_gst-plugins-bad1.0: released (1.22.9-1)
175	trusty_gst-plugins-bad1.0: ignored (end of standard support)
176	-trusty/esm_gst-plugins-bad1.0: needs-triage
177	+trusty/esm_gst-plugins-bad1.0: not-affected (code not present)
178	xenial_gst-plugins-bad1.0: ignored (end of standard support)
179	-esm-apps/xenial_gst-plugins-bad1.0: needs-triage
180	+esm-apps/xenial_gst-plugins-bad1.0: not-affected (code not present)
181	bionic_gst-plugins-bad1.0: ignored (end of standard support)
182	-esm-apps/bionic_gst-plugins-bad1.0: needs-triage
183	-focal_gst-plugins-bad1.0: needs-triage
184	-esm-apps/focal_gst-plugins-bad1.0: needs-triage
185	-jammy_gst-plugins-bad1.0: needs-triage
186	-esm-apps/jammy_gst-plugins-bad1.0: needs-triage
187	-mantic_gst-plugins-bad1.0: needs-triage
188	-devel_gst-plugins-bad1.0: needs-triage
189	+esm-apps/bionic_gst-plugins-bad1.0: not-affected (code not present)
190	+focal_gst-plugins-bad1.0: not-affected (code not present)
191	+esm-apps/focal_gst-plugins-bad1.0: not-affected (code not present)
192	+jammy_gst-plugins-bad1.0: needed
193	+esm-apps/jammy_gst-plugins-bad1.0: needed
194	+mantic_gst-plugins-bad1.0: needed
195	+devel_gst-plugins-bad1.0: not-affected (1.22.9-1)

Ubuntu CVE Tracker

Merge ~yomonokio/ubuntu-cve-tracker:gst-plugins-bad into ubuntu-cve-tracker:master

Commit message

Description of the change

Preview Diff

Subscribers