VYPR

GPAC Project on Advanced Content library

by Gpac

CVEs (3)

  • CVE-2021-21842HigAug 25, 2021
    risk 0.57cvss 8.8epss 0.02

    An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an integer overflow when processing an atom using the 'ssix' FOURCC code, due to…

  • CVE-2021-21860HigAug 16, 2021
    risk 0.57cvss 8.8epss 0.02

    An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an improper memory allocation resulting in a heap-based buffer overflow that causes…

  • CVE-2021-21859HigAug 16, 2021
    risk 0.57cvss 8.8epss 0.02

    An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. The stri_box_read function is used when processing atoms using the 'stri' FOURCC code. An attacker can convince a user to open…