CVE-2022-36191

gpac/gpac

on github

Published

August 17, 2022

Severity

CVSS v3:

5.5 MEDIUM

CVSS v2:

N/A

Description

A heap-buffer-overflow had occurred in function gf_isom_dovi_config_get of isomedia/avc_ext.c:2490, as demonstrated by MP4Box. This vulnerability was fixed in commit fef6242.

References

https://github.com/gpac/gpac/issues/2218
https://www.debian.org/security/2023/dsa-5411

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:gpac:gpac::::::::	n/a	n/a	*
cpe:2.3:a:gpac:gpac::::::::	n/a	2.2.0	*

External Links

NVD - CVE-2022-36191