ID:

CVE-2018-7752 (NVD)

- Vulnerability Info (edit)
2018-03-07

GPAC through 0.7.1 has a Buffer Overflow in the gf_media_avc_read_sps function in media_tools/av_parsers.c, a different vulnerability than CVE-2018-1000100.

Products debian_linux, gpac, ubuntu_linux
Type Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119)
First patch
2018-03-06
https://github.com/gpac/gpac/commit/90dc7f853d31b0a4e9441cba97feccf36d8b69a4
"fix some exploitable overflows (#994, #997)"

Stats: +7 lines / -0 lines (total: 7 lines)
Patches https://github.com/gpac/gpac/issues/997
Relevant file/s • ./include/gpac/tools.h (modified, +1)
• ./src/isomedia/avc_ext.c (modified, +2)
• ./src/media_tools/av_parsers.c (modified, +4)
Links https://usn.ubuntu.com/3926-1/
https://lists.debian.org/debian-lts-announce/2019/02/msg00040.html
Annotation

Note:

This entry has not been annotated yet.

Please consider adding data:

gpac - Tree: 90dc7f853d

(? files)

Filter Settings
Files
Navigation
Patch data:

(on by default)


Patched area: