Gpac: Security Vulnerabilities
NULL Pointer Dereference in GitHub repository gpac/gpac prior to v2.1.0-DEV.
CVSS Score
5.7
EPSS Score
0.001
Published
2022-07-27
Use After Free in GitHub repository gpac/gpac prior to 2.1-DEV.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-07-19
Integer Overflow or Wraparound in GitHub repository gpac/gpac prior to 2.1-DEV.
CVSS Score
7.8
EPSS Score
0.0
Published
2022-07-19
The gf_bs_write_data function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-06-28
The schm_box_size function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-06-28
The gf_hinter_track_finalize function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-06-28
The GetHintFormat function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-06-28
In GPAC MP4Box 1.1.0, there is a Null pointer reference in the function gf_filter_pid_get_packet function in src/filter_core/filter_pid.c:5394, as demonstrated by GPAC. This can cause a denial of service (DOS).
CVSS Score
5.5
EPSS Score
0.001
Published
2022-06-28
In GPAC MP4Box v1.1.0, there is a heap-buffer-overflow in the function filter_parse_dyn_args function in filter_core/filter.c:1454, as demonstrated by GPAC. This can cause a denial of service (DOS).
CVSS Score
5.5
EPSS Score
0.001
Published
2022-06-27
In GPAC MP4Box v1.1.0, there is a stack buffer overflow at src/utils/error.c:1769 which leads to a denial of service vulnerability.
CVSS Score
5.5
EPSS Score
0.002
Published
2022-06-16