CVE-2018-21016
on github
Published
Severity
CVSS v3:
6.5 MEDIUM
CVSS v2:
4.3 MEDIUM
Description
audio_sample_entry_AddBox() at isomedia/box_code_base.c in GPAC 0.7.1 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file.
References
Configurations
| CPE23 | Version Start | Version End | Exact Version |
|---|---|---|---|
| cpe:2.3:a:gpac:gpac:0.7.1:*:*:*:*:*:*:* | n/a | n/a | 0.7.1 |
| cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* | n/a | n/a | 8.0 |