gpac/gpac on GitHub
GPAC Ultramedia OSS for Video Streaming & Next-Gen Multimedia Transcoding, Packaging & Delivery
CVE History
| CVE | Published | CVSS v2 | CVSS v3 |
|---|---|---|---|
| CVE-2024-28319 | N/A | N/A | |
| gpac 2.3-DEV-rev921-g422b78ecf-master was discovered to contain an out of boundary read vulnerability via gf_dash_setup_period media_tools/dash_client.c:6374 | |||
| CVE-2024-28318 | N/A | N/A | |
| gpac 2.3-DEV-rev921-g422b78ecf-master was discovered to contain a out of boundary write vulnerability via swf_get_string at scene_manager/swf_parse.c:325 | |||
| CVE-2023-46426 | N/A | N/A | |
| Heap-based Buffer Overflow vulnerability in gpac version 2.3-DEV-rev588-g7edc40fee-master, allows remote attackers to execute arbitrary code and cause a denial of service (DoS) via gf_fwrite component in at utils/os_file.c. | |||
| CVE-2023-46427 | N/A | N/A | |
| An issue was discovered in gpac version 2.3-DEV-rev588-g7edc40fee-master, allows remote attackers to execute arbitrary code, cause a denial of service (DoS), and obtain sensitive information via null pointer deference in gf_dash_setup_period component in media_tools/dash_client.c. | |||
| CVE-2024-22749 | 7.8 HIGH | N/A | |
| GPAC v2.3 was detected to contain a buffer overflow via the function gf_isom_new_generic_sample_description function in the isomedia/isom_write.c:4577 | |||
| CVE-2023-50120 | 5.5 MEDIUM | N/A | |
| MP4Box GPAC version 2.3-DEV-rev636-gfbd7e13aa-master was discovered to contain an infinite loop in the function av1_uvlc at media_tools/av_parsers.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted MP4 file. | |||
| CVE-2024-0322 | 9.1 CRITICAL | N/A | |
| Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.3-DEV. | |||
| CVE-2024-0321 | 9.8 CRITICAL | N/A | |
| Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3-DEV. | |||
| CVE-2023-46929 | 7.5 HIGH | N/A | |
| An issue discovered in GPAC 2.3-DEV-rev605-gfc9e29089-master in MP4Box in gf_avc_change_vui /afltest/gpac/src/media_tools/av_parsers.c:6872:55 allows attackers to crash the application. | |||
| CVE-2023-46932 | 9.8 CRITICAL | N/A | |
| Heap Buffer Overflow vulnerability in GPAC version 2.3-DEV-rev617-g671976fcc-master, allows attackers to execute arbitrary code and cause a denial of service (DoS) via str2ulong class in src/media_tools/avilib.c in gpac/MP4Box. | |||
| CVE-2023-47465 | 5.5 MEDIUM | N/A | |
| An issue in GPAC v.2.2.1 and before allows a local attacker to cause a denial of service (DoS) via the ctts_box_read function of file src/isomedia/box_code_base.c. | |||
| CVE-2023-46871 | 5.3 MEDIUM | N/A | |
| GPAC version 2.3-DEV-rev602-ged8424300-master in MP4Box contains a memory leak in NewSFDouble scenegraph/vrml_tools.c:300. This vulnerability may lead to a denial of service. | |||
| CVE-2023-48958 | 5.5 MEDIUM | N/A | |
| gpac 2.3-DEV-rev617-g671976fcc-master contains memory leaks in gf_mpd_resolve_url media_tools/mpd.c:4589. | |||
| CVE-2023-48090 | 7.1 HIGH | N/A | |
| GPAC 2.3-DEV-rev617-g671976fcc-master is vulnerable to memory leaks in extract_attributes media_tools/m3u8.c:329. | |||
| CVE-2023-48039 | 5.5 MEDIUM | N/A | |
| GPAC 2.3-DEV-rev617-g671976fcc-master is vulnerable to memory leak in gf_mpd_parse_string media_tools/mpd.c:75. | |||
| CVE-2023-48014 | 7.8 HIGH | N/A | |
| GPAC v2.3-DEV-rev566-g50c2ab06f-master was discovered to contain a stack overflow via the hevc_parse_vps_extension function at /media_tools/av_parsers.c. | |||
| CVE-2023-48013 | 7.8 HIGH | N/A | |
| GPAC v2.3-DEV-rev566-g50c2ab06f-master was discovered to contain a double free via the gf_filterpacket_del function at /gpac/src/filter_core/filter.c. | |||
| CVE-2023-48011 | 7.8 HIGH | N/A | |
| GPAC v2.3-DEV-rev566-g50c2ab06f-master was discovered to contain a heap-use-after-free via the flush_ref_samples function at /gpac/src/isomedia/movie_fragments.c. | |||
| CVE-2023-47384 | 5.5 MEDIUM | N/A | |
| MP4Box GPAC v2.3-DEV-rev617-g671976fcc-master was discovered to contain a memory leak in the function gf_isom_add_chapter at /isomedia/isom_write.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted MP4 file. | |||
| CVE-2023-46001 | 5.5 MEDIUM | N/A | |
| Buffer Overflow vulnerability in gpac MP4Box v.2.3-DEV-rev573-g201320819-master allows a local attacker to cause a denial of service via the gpac/src/isomedia/isom_read.c:2807:51 function in gf_isom_get_user_data. | |||
| CVE-2023-5998 | 7.5 HIGH | N/A | |
| Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.3.0-DEV. | |||
| CVE-2023-46927 | 5.5 MEDIUM | N/A | |
| GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow in gf_isom_use_compact_size gpac/src/isomedia/isom_write.c:3403:3 in gpac/MP4Box. | |||
| CVE-2023-46928 | 5.5 MEDIUM | N/A | |
| GPAC 2.3-DEV-rev605-gfc9e29089-master contains a SEGV in gpac/MP4Box in gf_media_change_pl /afltest/gpac/src/media_tools/isom_tools.c:3293:42. | |||
| CVE-2023-46931 | 5.5 MEDIUM | N/A | |
| GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow in ffdmx_parse_side_data /afltest/gpac/src/filters/ff_dmx.c:202:14 in gpac/MP4Box. | |||
| CVE-2023-46930 | 5.5 MEDIUM | N/A | |
| GPAC 2.3-DEV-rev605-gfc9e29089-master contains a SEGV in gpac/MP4Box in gf_isom_find_od_id_for_track /afltest/gpac/src/isomedia/media_odf.c:522:14. | |||
| CVE-2023-5595 | 5.5 MEDIUM | N/A | |
| Denial of Service in GitHub repository gpac/gpac prior to 2.3.0-DEV. | |||
| CVE-2023-5586 | 7.8 HIGH | N/A | |
| NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.3.0-DEV. | |||
| CVE-2023-42298 | 5.5 MEDIUM | N/A | |
| An issue in GPAC GPAC v.2.2.1 and before allows a local attacker to cause a denial of service via the Q_DecCoordOnUnitSphere function of file src/bifs/unquantize.c. | |||
| CVE-2023-5520 | 7.1 HIGH | N/A | |
| Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.2.2. | |||
| CVE-2023-5377 | 7.1 HIGH | N/A | |
| Out-of-bounds Read in GitHub repository gpac/gpac prior to v2.2.2-DEV. | |||
| CVE-2023-41000 | 5.5 MEDIUM | N/A | |
| GPAC through 2.2.1 has a use-after-free vulnerability in the function gf_bifs_flush_command_list in bifs/memory_decoder.c. | |||
| CVE-2023-4778 | 5.5 MEDIUM | N/A | |
| Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.3-DEV. | |||
| CVE-2023-4758 | 5.5 MEDIUM | N/A | |
| Buffer Over-read in GitHub repository gpac/gpac prior to 2.3-DEV. | |||
| CVE-2023-4755 | 5.5 MEDIUM | N/A | |
| Use After Free in GitHub repository gpac/gpac prior to 2.3-DEV. | |||
| CVE-2023-4754 | 5.5 MEDIUM | N/A | |
| Out-of-bounds Write in GitHub repository gpac/gpac prior to 2.3-DEV. | |||
| CVE-2023-4756 | 5.5 MEDIUM | N/A | |
| Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3-DEV. | |||
| CVE-2023-4720 | 5.5 MEDIUM | N/A | |
| Floating Point Comparison with Incorrect Operator in GitHub repository gpac/gpac prior to 2.3-DEV. | |||
| CVE-2023-4721 | 5.5 MEDIUM | N/A | |
| Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.3-DEV. | |||
| CVE-2023-4722 | 5.5 MEDIUM | N/A | |
| Integer Overflow or Wraparound in GitHub repository gpac/gpac prior to 2.3-DEV. | |||
| CVE-2023-4681 | 5.5 MEDIUM | N/A | |
| NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.3-DEV. | |||
| CVE-2023-4678 | 5.5 MEDIUM | N/A | |
| Divide By Zero in GitHub repository gpac/gpac prior to 2.3-DEV. | |||
| CVE-2023-4682 | 5.5 MEDIUM | N/A | |
| Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3-DEV. | |||
| CVE-2023-4683 | 5.5 MEDIUM | N/A | |
| NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.3-DEV. | |||
| CVE-2023-39562 | 5.5 MEDIUM | N/A | |
| GPAC v2.3-DEV-rev449-g5948e4f70-master was discovered to contain a heap-use-after-free via the gf_bs_align function at bitstream.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted file. | |||
| CVE-2023-37766 | 5.5 MEDIUM | N/A | |
| GPAC v2.3-DEV-rev381-g817a848f6-master was discovered to contain a segmentation violation in the gf_isom_remove_user_data function at /lib/libgpac.so. | |||
| CVE-2023-37767 | 5.5 MEDIUM | N/A | |
| GPAC v2.3-DEV-rev381-g817a848f6-master was discovered to contain a segmentation violation in the BM_ParseIndexValueReplace function at /lib/libgpac.so. | |||
| CVE-2023-37765 | 5.5 MEDIUM | N/A | |
| GPAC v2.3-DEV-rev381-g817a848f6-master was discovered to contain a segmentation violation in the gf_dump_vrml_sffield function at /lib/libgpac.so. | |||
| CVE-2023-37174 | 5.5 MEDIUM | N/A | |
| GPAC v2.3-DEV-rev381-g817a848f6-master was discovered to contain a segmentation violation in the dump_isom_scene function at /mp4box/filedump.c. | |||
| CVE-2023-3523 | 7.1 HIGH | N/A | |
| Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.2.2. | |||
| CVE-2023-3291 | 3.3 LOW | N/A | |
| Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.2.2. | |||
| CVE-2023-3013 | 7.1 HIGH | N/A | |
| Unchecked Return Value in GitHub repository gpac/gpac prior to 2.2.2. | |||
| CVE-2023-3012 | 7.8 HIGH | N/A | |
| NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.2.2. | |||
| CVE-2023-2840 | 9.8 CRITICAL | N/A | |
| NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.2.2. | |||
| CVE-2023-2839 | 7.5 HIGH | N/A | |
| Divide By Zero in GitHub repository gpac/gpac prior to 2.2.2. | |||
| CVE-2023-2838 | 9.1 CRITICAL | N/A | |
| Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.2.2. | |||
| CVE-2023-2837 | 5.5 MEDIUM | N/A | |
| Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.2.2. | |||
| CVE-2023-1654 | 7.8 HIGH | N/A | |
| Denial of Service in GitHub repository gpac/gpac prior to 2.4.0. | |||
| CVE-2023-1655 | 7.8 HIGH | N/A | |
| Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.4.0. | |||
| CVE-2023-1449 | 7.8 HIGH | N/A | |
| A vulnerability has been found in GPAC 2.3-DEV-rev35-gbbca86917-master and classified as problematic. This vulnerability affects the function gf_av1_reset_state of the file media_tools/av_parsers.c. The manipulation leads to double free. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. VDB-223294 is the identifier assigned to this vulnerability. | |||
| CVE-2023-1452 | 7.8 HIGH | N/A | |
| A vulnerability was found in GPAC 2.3-DEV-rev35-gbbca86917-master. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file filters/load_text.c. The manipulation leads to buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. The identifier VDB-223297 was assigned to this vulnerability. | |||
| CVE-2023-1448 | 7.8 HIGH | N/A | |
| A vulnerability, which was classified as problematic, was found in GPAC 2.3-DEV-rev35-gbbca86917-master. This affects the function gf_m2ts_process_sdt of the file media_tools/mpegts.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. The identifier VDB-223293 was assigned to this vulnerability. | |||
| CVE-2023-0866 | 7.8 HIGH | N/A | |
| Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3.0-DEV. | |||
| CVE-2023-0819 | 7.8 HIGH | N/A | |
| Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to v2.3.0-DEV. | |||
| CVE-2023-0818 | 5.5 MEDIUM | N/A | |
| Off-by-one Error in GitHub repository gpac/gpac prior to v2.3.0-DEV. | |||
| CVE-2023-0817 | 7.8 HIGH | N/A | |
| Buffer Over-read in GitHub repository gpac/gpac prior to v2.3.0-DEV. | |||
| CVE-2023-0770 | 7.8 HIGH | N/A | |
| Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.2. | |||
| CVE-2023-0760 | 7.8 HIGH | N/A | |
| Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to V2.1.0-DEV. | |||
| CVE-2023-23143 | 7.8 HIGH | N/A | |
| Buffer overflow vulnerability in function avc_parse_slice in file media_tools/av_parsers.c. GPAC version 2.3-DEV-rev1-g4669ba229-master. | |||
| CVE-2023-23144 | 5.5 MEDIUM | N/A | |
| Integer overflow vulnerability in function Q_DecCoordOnUnitSphere file bifs/unquantize.c in GPAC version 2.2-rev0-gab012bbfb-master. | |||
| CVE-2023-23145 | 7.8 HIGH | N/A | |
| GPAC version 2.2-rev0-gab012bbfb-master was discovered to contain a memory leak in lsr_read_rare_full function. | |||
| CVE-2023-0358 | 7.8 HIGH | N/A | |
| Use After Free in GitHub repository gpac/gpac prior to 2.3.0-DEV. | |||
| CVE-2022-47659 | 7.8 HIGH | N/A | |
| GPAC MP4box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to Buffer Overflow in gf_bs_read_data | |||
| CVE-2022-47653 | 7.8 HIGH | N/A | |
| GPAC MP4box 2.1-DEV-rev593-g007bf61a0 is vulnerable to Buffer Overflow in eac3_update_channels function of media_tools/av_parsers.c:9113 | |||
| CVE-2022-47662 | 5.5 MEDIUM | N/A | |
| GPAC MP4Box 2.1-DEV-rev649-ga8f438d20 has a segment fault (/stack overflow) due to infinite recursion in Media_GetSample isomedia/media.c:662 | |||
| CVE-2022-47661 | 7.8 HIGH | N/A | |
| GPAC MP4Box 2.1-DEV-rev649-ga8f438d20 is vulnerable to Buffer Overflow via media_tools/av_parsers.c:4988 in gf_media_nalu_add_emulation_bytes | |||
| CVE-2022-47660 | 7.8 HIGH | N/A | |
| GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is has an integer overflow in isomedia/isom_write.c | |||
| CVE-2022-47663 | 7.8 HIGH | N/A | |
| GPAC MP4box 2.1-DEV-rev649-ga8f438d20 is vulnerable to buffer overflow in h263dmx_process filters/reframe_h263.c:609 | |||
| CVE-2022-47658 | 7.8 HIGH | N/A | |
| GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to buffer overflow in function gf_hevc_read_vps_bs_internal of media_tools/av_parsers.c:8039 | |||
| CVE-2022-47657 | 7.8 HIGH | N/A | |
| GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to buffer overflow in function hevc_parse_vps_extension of media_tools/av_parsers.c:7662 | |||
| CVE-2022-47656 | 7.8 HIGH | N/A | |
| GPAC MP4box 2.1-DEV-rev617-g85ce76efd is vulnerable to Buffer Overflow in gf_hevc_read_sps_bs_internal function of media_tools/av_parsers.c:8273 | |||
| CVE-2022-47654 | 7.8 HIGH | N/A | |
| GPAC MP4box 2.1-DEV-rev593-g007bf61a0 is vulnerable to Buffer Overflow in gf_hevc_read_sps_bs_internal function of media_tools/av_parsers.c:8261 | |||
| CVE-2022-47088 | 7.8 HIGH | N/A | |
| GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer Overflow. | |||
| CVE-2022-47095 | 7.8 HIGH | N/A | |
| GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer overflow in hevc_parse_vps_extension function of media_tools/av_parsers.c | |||
| CVE-2022-47094 | 7.8 HIGH | N/A | |
| GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Null pointer dereference via filters/dmx_m2ts.c:343 in m2tsdmx_declare_pid | |||
| CVE-2022-47093 | 7.8 HIGH | N/A | |
| GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to heap use-after-free via filters/dmx_m2ts.c:470 in m2tsdmx_declare_pid | |||
| CVE-2022-47092 | 7.1 HIGH | N/A | |
| GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is contains an Integer overflow vulnerability in gf_hevc_read_sps_bs_internal function of media_tools/av_parsers.c:8316 | |||
| CVE-2022-47091 | 7.8 HIGH | N/A | |
| GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer Overflow in gf_text_process_sub function of filters/load_text.c | |||
| CVE-2022-47089 | 7.8 HIGH | N/A | |
| GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer Overflow via gf_vvc_read_sps_bs_internal function of media_tools/av_parsers.c | |||
| CVE-2022-46489 | 5.5 MEDIUM | N/A | |
| GPAC version 2.1-DEV-rev505-gb9577e6ad-master was discovered to contain a memory leak via the gf_isom_box_parse_ex function at box_funcs.c. | |||
| CVE-2022-47087 | 7.8 HIGH | N/A | |
| GPAC MP4box 2.1-DEV-rev574-g9d5bb184b has a Buffer overflow in gf_vvc_read_pps_bs_internal function of media_tools/av_parsers.c | |||
| CVE-2022-47086 | 5.5 MEDIUM | N/A | |
| GPAC MP4Box v2.1-DEV-rev574-g9d5bb184b contains a segmentation violation via the function gf_sm_load_init_swf at scene_manager/swf_parse.c | |||
| CVE-2022-46490 | 5.5 MEDIUM | N/A | |
| GPAC version 2.1-DEV-rev505-gb9577e6ad-master was discovered to contain a memory leak via the afrt_box_read function at box_code_adobe.c. | |||
| CVE-2022-45283 | 7.8 HIGH | N/A | |
| GPAC MP4box v2.0.0 was discovered to contain a stack overflow in the smil_parse_time_list parameter at /scenegraph/svg_attributes.c. | |||
| CVE-2022-45343 | 7.8 HIGH | N/A | |
| GPAC v2.1-DEV-rev478-g696e6f868-master was discovered to contain a heap use-after-free via the Q_IsTypeOn function at /gpac/src/bifs/unquantize.c. | |||
| CVE-2022-4202 | 8.8 HIGH | N/A | |
| A vulnerability, which was classified as problematic, was found in GPAC 2.1-DEV-rev490-g68064e101-master. Affected is the function lsr_translate_coords of the file laser/lsr_dec.c. The manipulation leads to integer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The name of the patch is b3d821c4ae9ba62b3a194d9dcb5e99f17bd56908. It is recommended to apply a patch to fix this issue. VDB-214518 is the identifier assigned to this vulnerability. | |||
| CVE-2022-45204 | 5.5 MEDIUM | N/A | |
| GPAC v2.1-DEV-rev428-gcb8ae46c8-master was discovered to contain a memory leak via the function dimC_box_read at isomedia/box_code_3gpp.c. | |||
| CVE-2022-45202 | 7.8 HIGH | N/A | |
| GPAC v2.1-DEV-rev428-gcb8ae46c8-master was discovered to contain a stack overflow via the function dimC_box_read at isomedia/box_code_3gpp.c. | |||
| CVE-2022-3957 | 6.5 MEDIUM | N/A | |
| A vulnerability classified as problematic was found in GPAC. Affected by this vulnerability is the function svg_parse_preserveaspectratio of the file scenegraph/svg_attributes.c of the component SVG Parser. The manipulation leads to memory leak. The attack can be launched remotely. The name of the patch is 2191e66aa7df750e8ef01781b1930bea87b713bb. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-213463. | |||
| CVE-2022-43254 | 5.5 MEDIUM | N/A | |
| GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a memory leak via the component gf_list_new at utils/list.c. | |||
| CVE-2022-43255 | 5.5 MEDIUM | N/A | |
| GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a memory leak via the component gf_odf_new_iod at odf/odf_code.c. | |||
| CVE-2022-43045 | 5.5 MEDIUM | N/A | |
| GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function gf_dump_vrml_sffield at /scene_manager/scene_dump.c. | |||
| CVE-2022-43044 | 5.5 MEDIUM | N/A | |
| GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function gf_isom_get_meta_item_info at /isomedia/meta.c. | |||
| CVE-2022-43043 | 5.5 MEDIUM | N/A | |
| GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function BD_CheckSFTimeOffset at /bifs/field_decode.c. | |||
| CVE-2022-43042 | 7.8 HIGH | N/A | |
| GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a heap buffer overflow via the function FixSDTPInTRAF at isomedia/isom_intern.c. | |||
| CVE-2022-43040 | 7.8 HIGH | N/A | |
| GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a heap buffer overflow via the function gf_isom_box_dump_start_ex at /isomedia/box_funcs.c. | |||
| CVE-2022-43039 | 5.5 MEDIUM | N/A | |
| GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function gf_isom_meta_restore_items_ref at /isomedia/meta.c. | |||
| CVE-2022-3222 | 5.5 MEDIUM | N/A | |
| Uncontrolled Recursion in GitHub repository gpac/gpac prior to 2.1.0-DEV. | |||
| CVE-2022-3178 | 7.8 HIGH | N/A | |
| Buffer Over-read in GitHub repository gpac/gpac prior to 2.1.0-DEV. | |||
| CVE-2022-38530 | 7.8 HIGH | N/A | |
| GPAC v2.1-DEV-rev232-gfcaa01ebb-master was discovered to contain a stack overflow when processing ISOM_IOD. | |||
| CVE-2022-36191 | 5.5 MEDIUM | N/A | |
| A heap-buffer-overflow had occurred in function gf_isom_dovi_config_get of isomedia/avc_ext.c:2490, as demonstrated by MP4Box. This vulnerability was fixed in commit fef6242. | |||
| CVE-2022-36190 | 9.8 CRITICAL | N/A | |
| GPAC mp4box 2.1-DEV-revUNKNOWN-master has a use-after-free vulnerability in function gf_isom_dovi_config_get. This vulnerability was fixed in commit fef6242. | |||
| CVE-2022-36186 | 7.5 HIGH | N/A | |
| A Null Pointer dereference vulnerability exists in GPAC 2.1-DEV-revUNKNOWN-master via the function gf_filter_pid_set_property_full () at filter_core/filter_pid.c:5250,which causes a Denial of Service (DoS). This vulnerability was fixed in commit b43f9d1. | |||
| CVE-2022-2549 | 5.5 MEDIUM | N/A | |
| NULL Pointer Dereference in GitHub repository gpac/gpac prior to v2.1.0-DEV. | |||
| CVE-2022-2453 | 7.8 HIGH | N/A | |
| Use After Free in GitHub repository gpac/gpac prior to 2.1-DEV. | |||
| CVE-2022-2454 | 7.8 HIGH | N/A | |
| Integer Overflow or Wraparound in GitHub repository gpac/gpac prior to 2.1-DEV. | |||
| CVE-2021-40606 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The gf_bs_write_data function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command. | |||
| CVE-2021-40607 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The schm_box_size function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command. | |||
| CVE-2021-40944 | 5.5 MEDIUM | 4.3 MEDIUM | |
| In GPAC MP4Box 1.1.0, there is a Null pointer reference in the function gf_filter_pid_get_packet function in src/filter_core/filter_pid.c:5394, as demonstrated by GPAC. This can cause a denial of service (DOS). | |||
| CVE-2021-40609 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The GetHintFormat function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command. | |||
| CVE-2021-40608 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The gf_hinter_track_finalize function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command. | |||
| CVE-2021-40942 | 5.5 MEDIUM | 4.3 MEDIUM | |
| In GPAC MP4Box v1.1.0, there is a heap-buffer-overflow in the function filter_parse_dyn_args function in filter_core/filter.c:1454, as demonstrated by GPAC. This can cause a denial of service (DOS). | |||
| CVE-2021-41458 | 5.5 MEDIUM | 4.3 MEDIUM | |
| In GPAC MP4Box v1.1.0, there is a stack buffer overflow at src/utils/error.c:1769 which leads to a denial of service vulnerability. | |||
| CVE-2021-40592 | 5.5 MEDIUM | 4.3 MEDIUM | |
| GPAC version before commit 71460d72ec07df766dab0a4d52687529f3efcf0a (version v1.0.1 onwards) contains loop with unreachable exit condition ('infinite loop') vulnerability in ISOBMFF reader filter, isoffin_read.c. Function isoffin_process() can result in DoS by infinite loop. To exploit, the victim must open a specially crafted mp4 file. | |||
| CVE-2022-1795 | 9.8 CRITICAL | 7.5 HIGH | |
| Use After Free in GitHub repository gpac/gpac prior to v2.1.0-DEV. | |||
| CVE-2022-30976 | 7.1 HIGH | 4 MEDIUM | |
| GPAC 2.0.0 misuses a certain Unicode utf8_wcslen (renamed gf_utf8_wcslen) function in utils/utf.c, resulting in a heap-based buffer over-read, as demonstrated by MP4Box. | |||
| CVE-2022-29340 | 7.5 HIGH | 5 MEDIUM | |
| GPAC 2.1-DEV-rev87-g053aae8-master. has a Null Pointer Dereference vulnerability in gf_isom_parse_movie_boxes_internal due to improper return value handling of GF_SKIP_BOX, which causes a Denial of Service. This vulnerability was fixed in commit 37592ad. | |||
| CVE-2022-29339 | 7.5 HIGH | 5 MEDIUM | |
| In GPAC 2.1-DEV-rev87-g053aae8-master, function BS_ReadByte() in utils/bitstream.c has a failed assertion, which causes a Denial of Service. This vulnerability was fixed in commit 9ea93a2. | |||
| CVE-2022-1441 | 7.8 HIGH | 6.8 MEDIUM | |
| MP4Box is a component of GPAC-2.0.0, which is a widely-used third-party package on RPM Fusion. When MP4Box tries to parse a MP4 file, it calls the function `diST_box_read()` to read from video. In this function, it allocates a buffer `str` with fixed length. However, content read from `bs` is controllable by user, so is the length, which causes a buffer overflow. | |||
| CVE-2022-29537 | 5.5 MEDIUM | 4.3 MEDIUM | |
| gp_rtp_builder_do_hevc in ietf/rtp_pck_mpeg4.c in GPAC 2.0.0 has a heap-based buffer over-read, as demonstrated by MP4Box. | |||
| CVE-2022-27147 | 5.5 MEDIUM | 4.3 MEDIUM | |
| GPAC mp4box 1.1.0-DEV-rev1727-g8be34973d-master has a use-after-free vulnerability in function gf_node_get_attribute_by_tag. | |||
| CVE-2022-27146 | 5.5 MEDIUM | 4.3 MEDIUM | |
| GPAC mp4box 1.1.0-DEV-rev1759-geb2d1e6dd-has a heap-buffer-overflow vulnerability in function gf_isom_apple_enum_tag. | |||
| CVE-2022-27145 | 5.5 MEDIUM | 4.3 MEDIUM | |
| GPAC mp4box 1.1.0-DEV-rev1727-g8be34973d-master has a stack-overflow vulnerability in function gf_isom_get_sample_for_movie_time of mp4box. | |||
| CVE-2022-27148 | 5.5 MEDIUM | 4.3 MEDIUM | |
| GPAC mp4box 1.1.0-DEV-rev1663-g881c6a94a-master is vulnerable to Integer Overflow. | |||
| CVE-2022-1222 | 5.5 MEDIUM | 4.3 MEDIUM | |
| Inf loop in GitHub repository gpac/gpac prior to 2.1.0-DEV. | |||
| CVE-2022-1172 | 5 MEDIUM | 4.3 MEDIUM | |
| Null Pointer Dereference Caused Segmentation Fault in GitHub repository gpac/gpac prior to 2.1.0-DEV. | |||
| CVE-2022-1035 | 5.5 MEDIUM | 4.3 MEDIUM | |
| Segmentation Fault caused by MP4Box -lsr in GitHub repository gpac/gpac prior to 2.1.0-DEV. | |||
| CVE-2022-24577 | 7.8 HIGH | 6.8 MEDIUM | |
| GPAC 1.0.1 is affected by a NULL pointer dereference in gf_utf8_wcslen. (gf_utf8_wcslen is a renamed Unicode utf8_wcslen function.) | |||
| CVE-2022-24576 | 5.5 MEDIUM | 4.3 MEDIUM | |
| GPAC 1.0.1 is affected by Use After Free through MP4Box. | |||
| CVE-2022-24575 | 7.8 HIGH | 6.8 MEDIUM | |
| GPAC 1.0.1 is affected by a stack-based buffer overflow through MP4Box. | |||
| CVE-2022-26967 | 7.8 HIGH | 6.8 MEDIUM | |
| GPAC 2.0 allows a heap-based buffer overflow in gf_base64_encode. It can be triggered via MP4Box. | |||
| CVE-2021-4043 | 5.5 MEDIUM | 4.3 MEDIUM | |
| NULL Pointer Dereference in GitHub repository gpac/gpac prior to 1.1.0. | |||
| CVE-2022-24249 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Null Pointer Dereference vulnerability exists in GPAC 1.1.0 via the xtra_box_write function in /box_code_base.c, which causes a Denial of Service. This vulnerability was fixed in commit 71f9871. | |||
| CVE-2021-46239 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The binary MP4Box in GPAC v1.1.0 was discovered to contain an invalid free vulnerability via the function gf_free () at utils/alloc.c. This vulnerability can lead to a Denial of Service (DoS). | |||
| CVE-2021-46313 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The binary MP4Box in GPAC v1.0.1 was discovered to contain a segmentation fault via the function __memmove_avx_unaligned_erms (). This vulnerability can lead to a Denial of Service (DoS). | |||
| CVE-2021-46311 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A NULL pointer dereference vulnerability exists in GPAC v1.1.0 via the function gf_sg_destroy_routes () at scenegraph/vrml_route.c. This vulnerability can lead to a Denial of Service (DoS). | |||
| CVE-2021-46240 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A NULL pointer dereference vulnerability exists in GPAC v1.1.0 via the function gf_dump_vrml_sffield () at scene_manager/scene_dump.c. This vulnerability can lead to a Denial of Service (DoS). | |||
| CVE-2021-46238 | 5.5 MEDIUM | 4.3 MEDIUM | |
| GPAC v1.1.0 was discovered to contain a stack overflow via the function gf_node_get_name () at scenegraph/base_scenegraph.c. This vulnerability can lead to a program crash, causing a Denial of Service (DoS). | |||
| CVE-2021-46237 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An untrusted pointer dereference vulnerability exists in GPAC v1.1.0 via the function gf_node_unregister () at scenegraph/base_scenegraph.c. This vulnerability can lead to a Denial of Service (DoS). | |||
| CVE-2021-46236 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A NULL pointer dereference vulnerability exists in GPAC v1.1.0 via the function gf_sg_vrml_field_pointer_del () at scenegraph/vrml_tools.c. This vulnerability can lead to a Denial of Service (DoS). | |||
| CVE-2021-46234 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A NULL pointer dereference vulnerability exists in GPAC v1.1.0 via the function gf_node_unregister () at scenegraph/base_scenegraph.c. This vulnerability can lead to a Denial of Service (DoS). | |||
| CVE-2021-45764 | 5.5 MEDIUM | 4.3 MEDIUM | |
| GPAC v1.1.0 was discovered to contain an invalid memory address dereference via the function shift_chunk_offsets.isra(). | |||
| CVE-2021-45767 | 5.5 MEDIUM | 4.3 MEDIUM | |
| GPAC 1.1.0 was discovered to contain an invalid memory address dereference via the function lsr_read_id(). This vulnerability can lead to a Denial of Service (DoS). | |||
| CVE-2021-45763 | 5.5 MEDIUM | 4.3 MEDIUM | |
| GPAC v1.1.0 was discovered to contain an invalid call in the function gf_node_changed(). This vulnerability can lead to a Denial of Service (DoS). | |||
| CVE-2021-45762 | 5.5 MEDIUM | 4.3 MEDIUM | |
| GPAC v1.1.0 was discovered to contain an invalid memory address dereference via the function gf_sg_vrml_mf_reset(). This vulnerability allows attackers to cause a Denial of Service (DoS). | |||
| CVE-2021-45760 | 5.5 MEDIUM | 4.3 MEDIUM | |
| GPAC v1.1.0 was discovered to contain an invalid memory address dereference via the function gf_list_last(). This vulnerability allows attackers to cause a Denial of Service (DoS). | |||
| CVE-2021-40575 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The binary MP4Box in Gpac 1.0.1 has a null pointer dereference vulnerability in the mpgviddmx_process function in reframe_mpgvid.c, which allows attackers to cause a denial of service. This vulnerability is possibly due to an incomplete fix for CVE-2021-40566. | |||
| CVE-2021-40576 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The binary MP4Box in Gpac 1.0.1 has a null pointer dereference vulnerability in the gf_isom_get_payt_count function in hint_track.c, which allows attackers to cause a denial of service. | |||
| CVE-2021-40572 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The binary MP4Box in Gpac 1.0.1 has a double-free bug in the av1dmx_finalize function in reframe_av1.c, which allows attackers to cause a denial of service. | |||
| CVE-2021-40573 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the gf_list_del function in list.c, which allows attackers to cause a denial of service. | |||
| CVE-2021-40574 | 7.8 HIGH | 6.8 MEDIUM | |
| The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the gf_text_get_utf8_line function in load_text.c, which allows attackers to cause a denial of service, even code execution and escalation of privileges. | |||
| CVE-2021-40567 | 5.5 MEDIUM | 4.3 MEDIUM | |
| Segmentation fault vulnerability exists in Gpac through 1.0.1 via the gf_odf_size_descriptor function in desc_private.c when using mp4box, which causes a denial of service. | |||
| CVE-2021-40568 | 7.8 HIGH | 6.8 MEDIUM | |
| A buffer overflow vulnerability exists in Gpac through 1.0.1 via a malformed MP4 file in the svc_parse_slice function in av_parsers.c, which allows attackers to cause a denial of service, even code execution and escalation of privileges. | |||
| CVE-2021-40569 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The binary MP4Box in Gpac through 1.0.1 has a double-free vulnerability in the iloc_entry_del funciton in box_code_meta.c, which allows attackers to cause a denial of service. | |||
| CVE-2021-40570 | 7.8 HIGH | 6.8 MEDIUM | |
| The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the avc_compute_poc function in av_parsers.c, which allows attackers to cause a denial of service, even code execution and escalation of privileges. | |||
| CVE-2021-40571 | 7.8 HIGH | 6.8 MEDIUM | |
| The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the ilst_box_read function in box_code_apple.c, which allows attackers to cause a denial of service, even code execution and escalation of privileges. | |||
| CVE-2021-40563 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Segmentation fault exists casued by null pointer dereference exists in Gpac through 1.0.1 via the naludmx_create_avc_decoder_config function in reframe_nalu.c when using mp4box, which causes a denial of service. | |||
| CVE-2021-40566 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Segmentation fault casued by heap use after free vulnerability exists in Gpac through 1.0.1 via the mpgviddmx_process function in reframe_mpgvid.c when using mp4box, which causes a denial of service. | |||
| CVE-2021-40565 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Segmentation fault caused by a null pointer dereference vulnerability exists in Gpac through 1.0.1 via the gf_avc_parse_nalu function in av_parsers.c when using mp4box, which causes a denial of service. | |||
| CVE-2021-40564 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Segmentation fault caused by null pointer dereference vulnerability eists in Gpac through 1.0.2 via the avc_parse_slice function in av_parsers.c when using mp4box, which causes a denial of service. | |||
| CVE-2021-40562 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Segmentation fault caused by a floating point exception exists in Gpac through 1.0.1 using mp4box via the naludmx_enqueue_or_dispatch function in reframe_nalu.c, which causes a denial of service. | |||
| CVE-2021-40559 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A null pointer deference vulnerability exists in gpac through 1.0.1 via the naludmx_parse_nal_avc function in reframe_nalu, which allows a denail of service. | |||
| CVE-2021-36417 | 7.8 HIGH | 6.8 MEDIUM | |
| A heap-based buffer overflow vulnerability exists in GPAC v1.0.1 in the gf_isom_dovi_config_get function in MP4Box, which causes a denial of service or execute arbitrary code via a crafted file. | |||
| CVE-2021-36412 | 7.8 HIGH | 6.8 MEDIUM | |
| A heap-based buffer overflow vulnerability exists in MP4Box in GPAC 1.0.1 via the gp_rtp_builder_do_mpeg12_video function, which allows attackers to possibly have unspecified other impact via a crafted file in the MP4Box command, | |||
| CVE-2021-36414 | 7.8 HIGH | 6.8 MEDIUM | |
| A heab-based buffer overflow vulnerability exists in MP4Box in GPAC 1.0.1 via media.c, which allows attackers to cause a denial of service or execute arbitrary code via a crafted file. | |||
| CVE-2020-25427 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Null pointer dereference vulnerability exits in MP4Box - GPAC version 0.8.0-rev177-g51a8ef874-master via the gf_isom_get_track_id function, which causes a denial of service. | |||
| CVE-2021-46046 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Pointer Derefernce Vulnerbility exists GPAC 1.0.1 the gf_isom_box_size function, which could cause a Denial of Service (context-dependent). | |||
| CVE-2021-46051 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via the Media_IsSelfContained function, which could cause a Denial of Service. . | |||
| CVE-2021-46049 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via the gf_fileio_check function, which could cause a Denial of Service. | |||
| CVE-2021-46047 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via the gf_hinter_finalize function. | |||
| CVE-2021-46045 | 5.5 MEDIUM | 4.3 MEDIUM | |
| GPAC 1.0.1 is affected by: Abort failed. The impact is: cause a denial of service (context-dependent). | |||
| CVE-2021-46044 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Pointer Dereference Vulnerabilty exists in GPAC 1.0.1via ShiftMetaOffset.isra, which causes a Denial of Service (context-dependent). | |||
| CVE-2021-46043 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Pointer Dereference Vulnerability exits in GPAC 1.0.1 in the gf_list_count function, which causes a Denial of Service. | |||
| CVE-2021-46042 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via the _fseeko function, which causes a Denial of Service. | |||
| CVE-2021-46041 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Segmentation Fault Vulnerability exists in GPAC 1.0.1 via the co64_box_new function, which causes a Denial of Service. | |||
| CVE-2021-46040 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Pointer Dereference Vulnerabilty exists in GPAC 1.0.1 via the finplace_shift_moov_meta_offsets function, which causes a Denial of Servie (context-dependent). | |||
| CVE-2021-46039 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Pointer Dereference Vulnerabilty exists in GPAC 1.0.1 via the shift_chunk_offsets.part function, which causes a Denial of Service (context-dependent). | |||
| CVE-2021-46038 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Pointer Dereference vulnerability exists in GPAC 1.0.1 in unlink_chunk.isra, which causes a Denial of Service (context-dependent). | |||
| CVE-2021-45831 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Null Pointer Dereference vulnerability exitgs in GPAC 1.0.1 in MP4Box via __strlen_avx2, which causes a Denial of Service. | |||
| CVE-2021-45267 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An invalid memory address dereference vulnerability exists in gpac 1.1.0 via the svg_node_start function, which causes a segmentation fault and application crash. | |||
| CVE-2021-45263 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An invalid free vulnerability exists in gpac 1.1.0 via the gf_svg_delete_attribute_value function, which causes a segmentation fault and application crash. | |||
| CVE-2021-45262 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An invalid free vulnerability exists in gpac 1.1.0 via the gf_sg_command_del function, which causes a segmentation fault and application crash. | |||
| CVE-2021-45260 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A null pointer dereference vulnerability exists in gpac 1.1.0 in the lsr_read_id.part function, which causes a segmentation fault and application crash. | |||
| CVE-2021-45266 | 7.5 HIGH | 5 MEDIUM | |
| A null pointer dereference vulnerability exists in gpac 1.1.0 via the lsr_read_anim_values_ex function, which causes a segmentation fault and application crash. | |||
| CVE-2021-45259 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An Invalid pointer reference vulnerability exists in gpac 1.1.0 via the gf_svg_node_del function, which causes a segmentation fault and application crash. | |||
| CVE-2021-45258 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A stack overflow vulnerability exists in gpac 1.1.0 via the gf_bifs_dec_proto_list function, which causes a segmentation fault and application crash. | |||
| CVE-2021-44923 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A null pointer dereference vulnerability exists in gpac 1.1.0 in the gf_dump_vrml_dyn_field.isra function, which causes a segmentation fault and application crash. | |||
| CVE-2021-44922 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A null pointer dereference vulnerability exists in gpac 1.1.0 in the BD_CheckSFTimeOffset function, which causes a segmentation fault and application crash. | |||
| CVE-2021-44921 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A null pointer dereference vulnerability exists in gpac 1.1.0 in the gf_isom_parse_movie_boxes_internal function, which causes a segmentation fault and application crash. | |||
| CVE-2021-44924 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An infinite loop vulnerability exists in gpac 1.1.0 in the gf_log function, which causes a Denial of Service. | |||
| CVE-2021-44925 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A null pointer dereference vulnerability exists in gpac 1.1.0 in the gf_svg_get_attribute_name function, which causes a segmentation fault and application crash. | |||
| CVE-2021-44926 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A null pointer dereference vulnerability exists in gpac 1.1.0-DEV in the gf_node_get_tag function, which causes a segmentation fault and application crash. | |||
| CVE-2021-44927 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A null pointer dereference vulnerability exists in gpac 1.1.0 in the gf_sg_vrml_mf_append function, which causes a segmentation fault and application crash. | |||
| CVE-2021-44920 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An invalid memory address dereference vulnerability exists in gpac 1.1.0 in the dump_od_to_saf.isra function, which causes a segmentation fault and application crash. | |||
| CVE-2021-44919 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Null Pointer Dereference vulnerability exists in the gf_sg_vrml_mf_alloc function in gpac 1.1.0-DEV, which causes a segmentation fault and application crash. | |||
| CVE-2021-44918 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Null Pointer Dereference vulnerability exists in gpac 1.1.0 in the gf_node_get_field function, which can cause a segmentation fault and application crash. | |||
| CVE-2021-45297 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An infinite loop vulnerability exists in Gpac 1.0.1 in gf_get_bit_size. | |||
| CVE-2021-45289 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A vulnerability exists in GPAC 1.0.1 due to an omission of security-relevant Information, which could cause a Denial of Service. The program terminates with signal SIGKILL. | |||
| CVE-2021-45291 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The gf_dump_setup function in GPAC 1.0.1 allows malicoius users to cause a denial of service (Invalid memory address dereference) via a crafted file in the MP4Box command. | |||
| CVE-2021-45292 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The gf_isom_hint_rtp_read function in GPAC 1.0.1 allows attackers to cause a denial of service (Invalid memory address dereference) via a crafted file in the MP4Box command. | |||
| CVE-2021-45288 | 5.5 MEDIUM | 4.3 MEDIUM | |
| A Double Free vulnerability exists in filedump.c in GPAC 1.0.1, which could cause a Denail of Service via a crafted file in the MP4Box command. | |||
| CVE-2020-22673 | 5.5 MEDIUM | 4.3 MEDIUM | |
| Memory leak in the senc_Parse function in MP4Box in gpac 0.8.0 allows attackers to cause a denial of service (DoS) via a crafted input. | |||
| CVE-2020-22674 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in gpac 0.8.0. An invalid memory dereference exists in the function FixTrackID located in isom_intern.c, which allows attackers to cause a denial of service (DoS) via a crafted input. | |||
| CVE-2020-22678 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in gpac 0.8.0. The gf_media_nalu_remove_emulation_bytes function in av_parsers.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted input. | |||
| CVE-2020-22679 | 5.5 MEDIUM | 4.3 MEDIUM | |
| Memory leak in the sgpd_parse_entry function in MP4Box in gpac 0.8.0 allows attackers to cause a denial of service (DoS) via a crafted input. | |||
| CVE-2020-22675 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in gpac 0.8.0. The GetGhostNum function in stbl_read.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted input. | |||
| CVE-2020-22677 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in gpac 0.8.0. The dump_data_hex function in box_dump.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted input. | |||
| CVE-2021-41457 | 7.5 HIGH | 5 MEDIUM | |
| There is a stack buffer overflow in MP4Box 1.1.0 at src/filters/dmx_nhml.c in nhmldmx_init_parsing which leads to a denial of service vulnerability. | |||
| CVE-2021-41459 | 7.5 HIGH | 5 MEDIUM | |
| There is a stack buffer overflow in MP4Box v1.0.1 at src/filters/dmx_nhml.c:1008 in the nhmldmx_send_sample() function szXmlFrom parameter which leads to a denial of service vulnerability. | |||
| CVE-2021-41456 | 7.5 HIGH | 5 MEDIUM | |
| There is a stack buffer overflow in MP4Box v1.0.1 at src/filters/dmx_nhml.c:1004 in the nhmldmx_send_sample() function szXmlTo parameter which leads to a denial of service vulnerability. | |||
| CVE-2020-23269 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in gpac 0.8.0. The stbl_GetSampleSize function in isomedia/stbl_read.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted media file. | |||
| CVE-2020-23267 | 7.1 HIGH | 5.8 MEDIUM | |
| An issue was discovered in gpac 0.8.0. The gf_hinter_track_process function in isom_hinter_track_process.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted media file | |||
| CVE-2020-23266 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in gpac 0.8.0. The OD_ReadUTF8String function in odf_code.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted media file. | |||
| CVE-2021-32270 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function vwid_box_del located in box_code_base.c. It allows an attacker to cause Denial of Service. | |||
| CVE-2021-32271 | 7.8 HIGH | 6.8 MEDIUM | |
| An issue was discovered in gpac through 20200801. A stack-buffer-overflow exists in the function DumpRawUIConfig located in odf_dump.c. It allows an attacker to cause code Execution. | |||
| CVE-2021-32269 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function ilst_item_box_dump located in box_dump.c. It allows an attacker to cause Denial of Service. | |||
| CVE-2021-32268 | 7.8 HIGH | 6.8 MEDIUM | |
| Buffer overflow vulnerability in function gf_fprintf in os_file.c in gpac before 1.0.1 allows attackers to execute arbitrary code. The fixed version is 1.0.1. | |||
| CVE-2021-33361 | 5.5 MEDIUM | 4.3 MEDIUM | |
| Memory leak in the afra_box_read function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file. | |||
| CVE-2021-32139 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The gf_isom_vp_config_get function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | |||
| CVE-2021-32138 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The DumpTrackInfo function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | |||
| CVE-2021-33363 | 5.5 MEDIUM | 4.3 MEDIUM | |
| Memory leak in the infe_box_read function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file. | |||
| CVE-2021-33365 | 5.5 MEDIUM | 4.3 MEDIUM | |
| Memory leak in the gf_isom_get_root_od function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file. | |||
| CVE-2021-33362 | 7.8 HIGH | 6.8 MEDIUM | |
| Stack buffer overflow in the hevc_parse_vps_extension function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file. | |||
| CVE-2021-33364 | 5.5 MEDIUM | 4.3 MEDIUM | |
| Memory leak in the def_parent_box_new function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file. | |||
| CVE-2021-33366 | 5.5 MEDIUM | 4.3 MEDIUM | |
| Memory leak in the gf_isom_oinf_read_entry function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file. | |||
| CVE-2021-32132 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The abst_box_size function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | |||
| CVE-2021-32135 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The trak_box_size function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | |||
| CVE-2021-32134 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The gf_odf_desc_copy function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | |||
| CVE-2021-32137 | 5.5 MEDIUM | 4.3 MEDIUM | |
| Heap buffer overflow in the URL_GetProtocolType function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file. | |||
| CVE-2021-32136 | 7.8 HIGH | 6.8 MEDIUM | |
| Heap buffer overflow in the print_udta function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file. | |||
| CVE-2020-19751 | 9.1 CRITICAL | 6.4 MEDIUM | |
| An issue was discovered in gpac 0.8.0. The gf_odf_del_ipmp_tool function in odf_code.c has a heap-based buffer over-read. | |||
| CVE-2020-19750 | 7.5 HIGH | 5 MEDIUM | |
| An issue was discovered in gpac 0.8.0. The strdup function in box_code_base.c has a heap-based buffer over-read. | |||
| CVE-2021-32439 | 7.8 HIGH | 6.8 MEDIUM | |
| Buffer overflow in the stbl_AppendSize function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file. | |||
| CVE-2021-32440 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The Media_RewriteODFrame function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | |||
| CVE-2021-32438 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The gf_media_export_filters function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | |||
| CVE-2021-32437 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The gf_hinter_finalize function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | |||
| CVE-2021-36584 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC 1.0.1. There is a heap-based buffer overflow in the function gp_rtp_builder_do_tx3g function in ietf/rtp_pck_3gpp.c, as demonstrated by MP4Box. This can cause a denial of service (DOS). | |||
| CVE-2020-22352 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The gf_dash_segmenter_probe_input function in GPAC v0.8 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | |||
| CVE-2020-24829 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC v0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer overflow in gf_m2ts_section_complete in media_tools/mpegts.c that can cause a denial of service (DOS) via a crafted MP4 file. | |||
| CVE-2020-19488 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in box_code_apple.c:119 in Gpac MP4Box 0.8.0, allows attackers to cause a Denial of Service due to an invalid read on function ilst_item_Read. | |||
| CVE-2020-19481 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid memory read in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file. | |||
| CVE-2020-23928 | 7.1 HIGH | 5.8 MEDIUM | |
| An issue was discovered in gpac before 1.0.1. The abst_box_read function in box_code_adobe.c has a heap-based buffer over-read. | |||
| CVE-2020-23930 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function nhmldump_send_header located in write_nhml.c. It allows an attacker to cause Denial of Service. | |||
| CVE-2020-23931 | 7.1 HIGH | 5.8 MEDIUM | |
| An issue was discovered in gpac before 1.0.1. The abst_box_read function in box_code_adobe.c has a heap-based buffer over-read. | |||
| CVE-2020-23932 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in gpac before 1.0.1. A NULL pointer dereference exists in the function dump_isom_sdp located in filedump.c. It allows an attacker to cause Denial of Service. | |||
| CVE-2020-35981 | 7.8 HIGH | 6.8 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function SetupWriters() in isomedia/isom_store.c. | |||
| CVE-2020-35980 | 7.8 HIGH | 6.8 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is a use-after-free in the function gf_isom_box_del() in isomedia/box_funcs.c. | |||
| CVE-2020-35979 | 7.8 HIGH | 6.8 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is heap-based buffer overflow in the function gp_rtp_builder_do_avc() in ietf/rtp_pck_mpeg4.c. | |||
| CVE-2020-35982 | 7.8 HIGH | 6.8 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function gf_hinter_track_finalize() in media_tools/isom_hinter.c. | |||
| CVE-2021-30019 | 5.5 MEDIUM | 4.3 MEDIUM | |
| In the adts_dmx_process function in filters/reframe_adts.c in GPAC 1.0.1, a crafted file may cause ctx->hdr.frame_size to be smaller than ctx->hdr.hdr_size, resulting in size to be a negative number and a heap overflow in the memcpy. | |||
| CVE-2021-30199 | 5.5 MEDIUM | 4.3 MEDIUM | |
| In filters/reframe_latm.c in GPAC 1.0.1 there is a Null Pointer Dereference, when gf_filter_pck_get_data is called. The first arg pck may be null with a crafted mp4 file,which results in a crash. | |||
| CVE-2021-30022 | 5.5 MEDIUM | 4.3 MEDIUM | |
| There is a integer overflow in media_tools/av_parsers.c in the gf_avc_read_pps_bs_internal in GPAC 1.0.1. pps_id may be a negative number, so it will not return. However, avc->pps only has 255 unit, so there is an overflow, which results a crash. | |||
| CVE-2021-30020 | 5.5 MEDIUM | 4.3 MEDIUM | |
| In the function gf_hevc_read_pps_bs_internal function in media_tools/av_parsers.c in GPAC 1.0.1 there is a loop, which with crafted file, pps->num_tile_columns may be larger than sizeof(pps->column_width), which results in a heap overflow in the loop. | |||
| CVE-2021-29279 | 7.8 HIGH | 6.8 MEDIUM | |
| There is a integer overflow in function filter_core/filter_props.c:gf_props_assign_value in GPAC 1.0.1. In which, the arg const GF_PropertyValue *value,maybe value->value.data.size is a negative number. In result, memcpy in gf_props_assign_value failed. | |||
| CVE-2021-30014 | 5.5 MEDIUM | 4.3 MEDIUM | |
| There is a integer overflow in media_tools/av_parsers.c in the hevc_parse_slice_segment function in GPAC 1.0.1 which results in a crash. | |||
| CVE-2021-30015 | 5.5 MEDIUM | 4.3 MEDIUM | |
| There is a Null Pointer Dereference in function filter_core/filter_pck.c:gf_filter_pck_new_alloc_internal in GPAC 1.0.1. The pid comes from function av1dmx_parse_flush_sample, the ctx.opid maybe NULL. The result is a crash in gf_filter_pck_new_alloc_internal. | |||
| CVE-2021-31255 | 7.8 HIGH | 6.8 MEDIUM | |
| Buffer overflow in the abst_box_read function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file. | |||
| CVE-2021-31262 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The AV1_DuplicateConfig function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | |||
| CVE-2021-31254 | 7.8 HIGH | 6.8 MEDIUM | |
| Buffer overflow in the tenc_box_read function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file, related invalid IV sizes. | |||
| CVE-2021-31260 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The MergeTrack function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | |||
| CVE-2021-31256 | 5.5 MEDIUM | 4.3 MEDIUM | |
| Memory leak in the stbl_GetSampleInfos function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file. | |||
| CVE-2021-31261 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The gf_hinter_track_new function in GPAC 1.0.1 allows attackers to read memory via a crafted file in the MP4Box command. | |||
| CVE-2021-31257 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The HintFile function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | |||
| CVE-2021-31258 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The gf_isom_set_extraction_slc function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | |||
| CVE-2021-31259 | 5.5 MEDIUM | 4.3 MEDIUM | |
| The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | |||
| CVE-2021-28300 | 9.8 CRITICAL | 7.5 HIGH | |
| NULL Pointer Dereference in the "isomedia/track.c" module's "MergeTrack()" function of GPAC v0.5.2 allows attackers to execute arbitrary code or cause a Denial-of-Service (DoS) by uploading a malicious MP4 file. | |||
| CVE-2020-11558 | 9.8 CRITICAL | 7.5 HIGH | |
| An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by MP4Box. audio_sample_entry_Read in isomedia/box_code_base.c does not properly decide when to make gf_isom_box_del calls. This leads to various use-after-free outcomes involving mdia_Read, gf_isom_delete_movie, and gf_isom_parse_movie_boxes. | |||
| CVE-2019-20628 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a Use-After-Free vulnerability in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file. | |||
| CVE-2019-20632 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid pointer dereference in gf_odf_delete_descriptor in odf/desc_private.c that can cause a denial of service via a crafted MP4 file. | |||
| CVE-2019-20631 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid pointer dereference in gf_list_count in utils/list.c that can cause a denial of service via a crafted MP4 file. | |||
| CVE-2019-20630 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer over-read in BS_ReadByte (called from gf_bs_read_bit) in utils/bitstream.c that can cause a denial of service via a crafted MP4 file. | |||
| CVE-2019-20629 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer over-read in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file. | |||
| CVE-2020-6631 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0. There is a NULL pointer dereference in the function gf_m2ts_stream_process_pmt() in media_tools/m2ts_mux.c. | |||
| CVE-2020-6630 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0. There is a NULL pointer dereference in the function gf_isom_get_media_data_size() in isomedia/isom_read.c. | |||
| CVE-2019-20208 | 5.5 MEDIUM | 4.3 MEDIUM | |
| dimC_Read in isomedia/box_code_3gpp.c in GPAC 0.8.0 has a stack-based buffer overflow. | |||
| CVE-2019-20161 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is heap-based buffer overflow in the function ReadGF_IPMPX_WatermarkingInit() in odf/ipmpx_code.c. | |||
| CVE-2019-20159 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a memory leak in dinf_New() in isomedia/box_code_base.c. | |||
| CVE-2019-20170 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is an invalid pointer dereference in the function GF_IPMPX_AUTH_Delete() in odf/ipmpx_code.c. | |||
| CVE-2019-20169 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function trak_Read() in isomedia/box_code_base.c. | |||
| CVE-2019-20168 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function gf_isom_box_dump_ex() in isomedia/box_funcs.c. | |||
| CVE-2019-20167 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function senc_Parse() in isomedia/box_code_drm.c. | |||
| CVE-2019-20166 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function gf_isom_dump() in isomedia/box_dump.c. | |||
| CVE-2019-20165 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function ilst_item_Read() in isomedia/box_code_apple.c. | |||
| CVE-2019-20164 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function gf_isom_box_del() in isomedia/box_funcs.c. | |||
| CVE-2019-20163 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function gf_odf_avc_cfg_write_bs() in odf/descriptors.c. | |||
| CVE-2019-20162 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is heap-based buffer overflow in the function gf_isom_box_parse_ex() in isomedia/box_funcs.c. | |||
| CVE-2019-20171 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There are memory leaks in metx_New in isomedia/box_code_base.c and abst_Read in isomedia/box_code_adobe.c. | |||
| CVE-2019-20160 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a stack-based buffer overflow in the function av1_parse_tile_group() in media_tools/av_parsers.c. | |||
| CVE-2018-21016 | 6.5 MEDIUM | 4.3 MEDIUM | |
| audio_sample_entry_AddBox() at isomedia/box_code_base.c in GPAC 0.7.1 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. | |||
| CVE-2018-21015 | 6.5 MEDIUM | 4.3 MEDIUM | |
| AVC_DuplicateConfig() at isomedia/avc_ext.c in GPAC 0.7.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file. There is "cfg_new->AVCLevelIndication = cfg->AVCLevelIndication;" but cfg could be NULL. | |||
| CVE-2018-21017 | 6.5 MEDIUM | 4.3 MEDIUM | |
| GPAC 0.7.1 has a memory leak in dinf_Read in isomedia/box_code_base.c. | |||
| CVE-2019-13618 | 7.5 HIGH | 5 MEDIUM | |
| In GPAC before 0.8.0, isomedia/isom_read.c in libgpac.a has a heap-based buffer over-read, as demonstrated by a crash in gf_m2ts_sync in media_tools/mpegts.c. | |||
| CVE-2019-12483 | 7.8 HIGH | 6.8 MEDIUM | |
| An issue was discovered in GPAC 0.7.1. There is a heap-based buffer overflow in the function ReadGF_IPMPX_RemoveToolNotificationListener in odf/ipmpx_code.c in libgpac.a, as demonstrated by MP4Box. | |||
| CVE-2019-12482 | 7.5 HIGH | 5 MEDIUM | |
| An issue was discovered in GPAC 0.7.1. There is a NULL pointer dereference in the function gf_isom_get_original_format_type at isomedia/drm_sample.c in libgpac.a, as demonstrated by MP4Box. | |||
| CVE-2019-12481 | 5.5 MEDIUM | 4.3 MEDIUM | |
| An issue was discovered in GPAC 0.7.1. There is a NULL pointer dereference in the function GetESD at isomedia/track.c in libgpac.a, as demonstrated by MP4Box. | |||
| CVE-2019-11222 | 7.8 HIGH | 6.8 MEDIUM | |
| gf_bin128_parse in utils/os_divers.c in GPAC 0.7.1 has a buffer overflow issue for the crypt feature when encountering a crafted_drm_file.xml file. | |||
| CVE-2019-11221 | 7.8 HIGH | 6.8 MEDIUM | |
| GPAC 0.7.1 has a buffer overflow issue in gf_import_message() in media_import.c. | |||
| CVE-2018-20761 | 7.8 HIGH | 6.8 MEDIUM | |
| GPAC version 0.7.1 and earlier has a Buffer Overflow vulnerability in the gf_sm_load_init function in scene_manager.c in libgpac_static.a. | |||
| CVE-2018-20763 | 7.8 HIGH | 6.8 MEDIUM | |
| In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because of missing szLineConv bounds checking. | |||
| CVE-2018-20762 | 7.8 HIGH | 6.8 MEDIUM | |
| GPAC version 0.7.1 and earlier has a buffer overflow vulnerability in the cat_multiple_files function in applications/mp4box/fileimport.c when MP4Box is used for a local directory containing crafted filenames. | |||
| CVE-2018-20760 | 7.8 HIGH | 6.8 MEDIUM | |
| In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because a certain -1 return value is mishandled. | |||
| CVE-2018-13006 | 9.8 CRITICAL | 7.5 HIGH | |
| An issue was discovered in MP4Box in GPAC 0.7.1. There is a heap-based buffer over-read in the isomedia/box_dump.c function hdlr_dump. | |||
| CVE-2018-13005 | 9.8 CRITICAL | 7.5 HIGH | |
| An issue was discovered in MP4Box in GPAC 0.7.1. The function urn_Read in isomedia/box_code_base.c has a heap-based buffer over-read. | |||
| CVE-2018-7752 | 7.8 HIGH | 6.8 MEDIUM | |
| GPAC through 0.7.1 has a Buffer Overflow in the gf_media_avc_read_sps function in media_tools/av_parsers.c, a different vulnerability than CVE-2018-1000100. | |||
| CVE-2018-1000100 | 7.8 HIGH | 6.8 MEDIUM | |
| GPAC MP4Box version 0.7.1 and earlier contains a Buffer Overflow vulnerability in src/isomedia/avc_ext.c lines 2417 to 2420 that can result in Heap chunks being modified, this could lead to RCE. This attack appear to be exploitable via an attacker supplied MP4 file that when run by the victim may result in RCE. | |||