CVE-2019-20171

gpac/gpac

on github

Published

December 31, 2019

Severity

CVSS v3:

5.5 MEDIUM

CVSS v2:

4.3 MEDIUM

Description

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There are memory leaks in metx_New in isomedia/box_code_base.c and abst_Read in isomedia/box_code_adobe.c.

References

https://github.com/gpac/gpac/issues/1337
https://lists.debian.org/debian-lts-announce/2020/01/msg00017.html

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:gpac:gpac:0.8.0:::::::*	n/a	n/a	0.8.0
cpe:2.3:a:gpac:gpac:0.9.0:::::::*	n/a	n/a	0.9.0
cpe:2.3:o:debian:debian_linux:8.0:::::::*	n/a	n/a	8.0

External Links

NVD - CVE-2019-20171