Gpac: Security Vulnerabilities
GPAC 2.3-DEV-rev605-gfc9e29089-master contains a SEGV in gpac/MP4Box in gf_isom_find_od_id_for_track /afltest/gpac/src/isomedia/media_odf.c:522:14.
CVSS Score
5.5
EPSS Score
0.001
Published
2023-11-01
GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow in ffdmx_parse_side_data /afltest/gpac/src/filters/ff_dmx.c:202:14 in gpac/MP4Box.
CVSS Score
5.5
EPSS Score
0.001
Published
2023-11-01
Denial of Service in GitHub repository gpac/gpac prior to 2.3.0-DEV.
CVSS Score
5.1
EPSS Score
0.001
Published
2023-10-16
NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.3.0-DEV.
CVSS Score
4.4
EPSS Score
0.0
Published
2023-10-15
An issue in GPAC GPAC v.2.2.1 and before allows a local attacker to cause a denial of service via the Q_DecCoordOnUnitSphere function of file src/bifs/unquantize.c.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-10-12
Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.2.2.
CVSS Score
4.0
EPSS Score
0.0
Published
2023-10-11
Out-of-bounds Read in GitHub repository gpac/gpac prior to v2.2.2-DEV.
CVSS Score
5.5
EPSS Score
0.001
Published
2023-10-04
GPAC through 2.2.1 has a use-after-free vulnerability in the function gf_bifs_flush_command_list in bifs/memory_decoder.c.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-09-11
Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.3-DEV.
CVSS Score
5.9
EPSS Score
0.0
Published
2023-09-05
Buffer Over-read in GitHub repository gpac/gpac prior to 2.3-DEV.
CVSS Score
5.9
EPSS Score
0.0
Published
2023-09-04