Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Gpac
(Gpac)| Repositories | https://github.com/gpac/gpac |
| #Vulnerabilities | 337 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-11-15 | CVE-2023-48013 | GPAC v2.3-DEV-rev566-g50c2ab06f-master was discovered to contain a double free via the gf_filterpacket_del function at /gpac/src/filter_core/filter.c. | Gpac | 7.8 | ||
| 2023-11-15 | CVE-2023-48014 | GPAC v2.3-DEV-rev566-g50c2ab06f-master was discovered to contain a stack overflow via the hevc_parse_vps_extension function at /media_tools/av_parsers.c. | Gpac | 7.8 | ||
| 2023-11-14 | CVE-2023-47384 | MP4Box GPAC v2.3-DEV-rev617-g671976fcc-master was discovered to contain a memory leak in the function gf_isom_add_chapter at /isomedia/isom_write.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted MP4 file. | Gpac | 5.5 | ||
| 2023-11-07 | CVE-2023-46001 | Buffer Overflow vulnerability in gpac MP4Box v.2.3-DEV-rev573-g201320819-master allows a local attacker to cause a denial of service via the gpac/src/isomedia/isom_read.c:2807:51 function in gf_isom_get_user_data. | Gpac | 5.5 | ||
| 2023-11-07 | CVE-2023-5998 | Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.3.0-DEV. | Gpac | 7.5 | ||
| 2023-11-01 | CVE-2023-46930 | GPAC 2.3-DEV-rev605-gfc9e29089-master contains a SEGV in gpac/MP4Box in gf_isom_find_od_id_for_track /afltest/gpac/src/isomedia/media_odf.c:522:14. | Gpac | 5.5 | ||
| 2023-11-01 | CVE-2023-46931 | GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow in ffdmx_parse_side_data /afltest/gpac/src/filters/ff_dmx.c:202:14 in gpac/MP4Box. | Gpac | 5.5 | ||
| 2023-11-01 | CVE-2023-46927 | GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow in gf_isom_use_compact_size gpac/src/isomedia/isom_write.c:3403:3 in gpac/MP4Box. | Gpac | 5.5 | ||
| 2023-11-01 | CVE-2023-46928 | GPAC 2.3-DEV-rev605-gfc9e29089-master contains a SEGV in gpac/MP4Box in gf_media_change_pl /afltest/gpac/src/media_tools/isom_tools.c:3293:42. | Gpac | 5.5 | ||
| 2022-11-11 | CVE-2022-3957 | A vulnerability classified as problematic was found in GPAC. Affected by this vulnerability is the function svg_parse_preserveaspectratio of the file scenegraph/svg_attributes.c of the component SVG Parser. The manipulation leads to memory leak. The attack can be launched remotely. The name of the patch is 2191e66aa7df750e8ef01781b1930bea87b713bb. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-213463. | Gpac | 6.5 |