Gpac: Security Vulnerabilities
A null pointer dereference vulnerability exists in gpac 1.1.0 in the gf_dump_vrml_dyn_field.isra function, which causes a segmentation fault and application crash.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-12-21
An infinite loop vulnerability exists in gpac 1.1.0 in the gf_log function, which causes a Denial of Service.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-12-21
A null pointer dereference vulnerability exists in gpac 1.1.0 in the gf_svg_get_attribute_name function, which causes a segmentation fault and application crash.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-12-21
A null pointer dereference vulnerability exists in gpac 1.1.0-DEV in the gf_node_get_tag function, which causes a segmentation fault and application crash.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-12-21
A null pointer dereference vulnerability exists in gpac 1.1.0 in the gf_sg_vrml_mf_append function, which causes a segmentation fault and application crash.
CVSS Score
5.5
EPSS Score
0.002
Published
2021-12-21
An infinite loop vulnerability exists in Gpac 1.0.1 in gf_get_bit_size.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-12-21
A vulnerability exists in GPAC 1.0.1 due to an omission of security-relevant Information, which could cause a Denial of Service. The program terminates with signal SIGKILL.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-12-21
The gf_dump_setup function in GPAC 1.0.1 allows malicoius users to cause a denial of service (Invalid memory address dereference) via a crafted file in the MP4Box command.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-12-21
The gf_isom_hint_rtp_read function in GPAC 1.0.1 allows attackers to cause a denial of service (Invalid memory address dereference) via a crafted file in the MP4Box command.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-12-21
A Double Free vulnerability exists in filedump.c in GPAC 1.0.1, which could cause a Denail of Service via a crafted file in the MP4Box command.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-12-21