Buffer Over-read in GitHub repository gpac/gpac prior to 2.1.0-DEV.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-09-12
GPAC v2.1-DEV-rev232-gfcaa01ebb-master was discovered to contain a stack overflow when processing ISOM_IOD.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-09-06
A heap-buffer-overflow had occurred in function gf_isom_dovi_config_get of isomedia/avc_ext.c:2490, as demonstrated by MP4Box. This vulnerability was fixed in commit fef6242.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-08-17
GPAC mp4box 2.1-DEV-revUNKNOWN-master has a use-after-free vulnerability in function gf_isom_dovi_config_get. This vulnerability was fixed in commit fef6242.
CVSS Score
9.8
EPSS Score
0.001
Published
2022-08-17
NULL Pointer Dereference in GitHub repository gpac/gpac prior to v2.1.0-DEV.
CVSS Score
5.7
EPSS Score
0.003
Published
2022-07-27
Use After Free in GitHub repository gpac/gpac prior to 2.1-DEV.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-07-19
Integer Overflow or Wraparound in GitHub repository gpac/gpac prior to 2.1-DEV.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-07-19
Use After Free in GitHub repository gpac/gpac prior to v2.1.0-DEV.
CVSS Score
7.3
EPSS Score
0.002
Published
2022-05-18
GPAC 2.0.0 misuses a certain Unicode utf8_wcslen (renamed gf_utf8_wcslen) function in utils/utf.c, resulting in a heap-based buffer over-read, as demonstrated by MP4Box.
CVSS Score
7.1
EPSS Score
0.002
Published
2022-05-18
In GPAC 2.1-DEV-rev87-g053aae8-master, function BS_ReadByte() in utils/bitstream.c has a failed assertion, which causes a Denial of Service. This vulnerability was fixed in commit 9ea93a2.
CVSS Score
7.5
EPSS Score
0.004
Published
2022-05-05