CVE-2021-28300
- EPSS 2.08%
- Veröffentlicht 14.04.2021 14:15:14
- Zuletzt bearbeitet 21.11.2024 05:59:26
NULL Pointer Dereference in the "isomedia/track.c" module's "MergeTrack()" function of GPAC v0.5.2 allows attackers to execute arbitrary code or cause a Denial-of-Service (DoS) by uploading a malicious MP4 file.
CVE-2020-11558
- EPSS 1.54%
- Veröffentlicht 05.04.2020 20:15:12
- Zuletzt bearbeitet 21.11.2024 04:58:09
An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by MP4Box. audio_sample_entry_Read in isomedia/box_code_base.c does not properly decide when to make gf_isom_box_del calls. This leads to various use-after-free outcomes involving md...
CVE-2019-20629
- EPSS 0.91%
- Veröffentlicht 24.03.2020 19:15:21
- Zuletzt bearbeitet 21.11.2024 04:38:55
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer over-read in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file.
CVE-2019-20630
- EPSS 0.91%
- Veröffentlicht 24.03.2020 19:15:21
- Zuletzt bearbeitet 21.11.2024 04:38:55
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer over-read in BS_ReadByte (called from gf_bs_read_bit) in utils/bitstream.c that can cause a denial of service via a crafted MP4 file...
CVE-2019-20631
- EPSS 0.73%
- Veröffentlicht 24.03.2020 19:15:21
- Zuletzt bearbeitet 21.11.2024 04:38:55
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid pointer dereference in gf_list_count in utils/list.c that can cause a denial of service via a crafted MP4 file.
CVE-2019-20632
- EPSS 0.82%
- Veröffentlicht 24.03.2020 19:15:21
- Zuletzt bearbeitet 21.11.2024 04:38:55
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid pointer dereference in gf_odf_delete_descriptor in odf/desc_private.c that can cause a denial of service via a crafted MP4 file.
CVE-2019-20628
- EPSS 1.04%
- Veröffentlicht 24.03.2020 19:15:20
- Zuletzt bearbeitet 21.11.2024 04:38:54
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a Use-After-Free vulnerability in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file.
CVE-2020-6630
- EPSS 0.78%
- Veröffentlicht 09.01.2020 02:15:13
- Zuletzt bearbeitet 21.11.2024 05:36:04
An issue was discovered in GPAC version 0.8.0. There is a NULL pointer dereference in the function gf_isom_get_media_data_size() in isomedia/isom_read.c.
CVE-2020-6631
- EPSS 0.78%
- Veröffentlicht 09.01.2020 02:15:13
- Zuletzt bearbeitet 21.11.2024 05:36:04
An issue was discovered in GPAC version 0.8.0. There is a NULL pointer dereference in the function gf_m2ts_stream_process_pmt() in media_tools/m2ts_mux.c.
CVE-2019-20208
- EPSS 1.46%
- Veröffentlicht 02.01.2020 14:16:36
- Zuletzt bearbeitet 11.07.2025 20:06:49
dimC_Read in isomedia/box_code_3gpp.c in GPAC from 0.5.2 to 0.8.0 has a stack-based buffer overflow.