Gpac
by Gpac
Source repositories
CVEs (414)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-40574 | 0.00 | — | 0.01 | Jan 13, 2022 | The binary MP4Box in Gpac from 0.9.0-preview to 1.0.1 has a double-free vulnerability in the gf_text_get_utf8_line function in load_text.c, which allows attackers to cause a denial of service, even code execution and escalation of privileges. | |||
| CVE-2021-40563 | 0.00 | — | 0.01 | Jan 12, 2022 | A Segmentation fault exists casued by null pointer dereference exists in Gpac through 1.0.1 via the naludmx_create_avc_decoder_config function in reframe_nalu.c when using mp4box, which causes a denial of service. | |||
| CVE-2021-36417 | 0.00 | — | 0.01 | Jan 12, 2022 | A heap-based buffer overflow vulnerability exists in GPAC v1.0.1 in the gf_isom_dovi_config_get function in MP4Box, which causes a denial of service or execute arbitrary code via a crafted file. | |||
| CVE-2021-40565 | 0.00 | — | 0.01 | Jan 12, 2022 | A Segmentation fault caused by a null pointer dereference vulnerability exists in Gpac through 1.0.1 via the gf_avc_parse_nalu function in av_parsers.c when using mp4box, which causes a denial of service. | |||
| CVE-2021-40559 | 0.00 | — | 0.01 | Jan 12, 2022 | A null pointer deference vulnerability exists in gpac through 1.0.1 via the naludmx_parse_nal_avc function in reframe_nalu, which allows a denail of service. | |||
| CVE-2021-40562 | 0.00 | — | 0.01 | Jan 12, 2022 | A Segmentation fault caused by a floating point exception exists in Gpac through 1.0.1 using mp4box via the naludmx_enqueue_or_dispatch function in reframe_nalu.c, which causes a denial of service. | |||
| CVE-2021-40566 | 0.00 | — | 0.01 | Jan 12, 2022 | A Segmentation fault casued by heap use after free vulnerability exists in Gpac through 1.0.1 via the mpgviddmx_process function in reframe_mpgvid.c when using mp4box, which causes a denial of service. | |||
| CVE-2021-40564 | 0.00 | — | 0.01 | Jan 12, 2022 | A Segmentation fault caused by null pointer dereference vulnerability eists in Gpac through 1.0.2 via the avc_parse_slice function in av_parsers.c when using mp4box, which causes a denial of service. | |||
| CVE-2020-25427 | 0.00 | — | 0.01 | Jan 10, 2022 | A Null pointer dereference vulnerability exits in MP4Box - GPAC version 0.8.0-rev177-g51a8ef874-master via the gf_isom_get_track_id function, which causes a denial of service. | |||
| CVE-2021-36414 | 0.00 | — | 0.01 | Jan 10, 2022 | A heab-based buffer overflow vulnerability exists in MP4Box in GPAC 1.0.1 via media.c, which allows attackers to cause a denial of service or execute arbitrary code via a crafted file. | |||
| CVE-2021-36412 | 0.00 | — | 0.01 | Jan 10, 2022 | A heap-based buffer overflow vulnerability exists in MP4Box in GPAC 1.0.1 via the gp_rtp_builder_do_mpeg12_video function, which allows attackers to possibly have unspecified other impact via a crafted file in the MP4Box command, | |||
| CVE-2021-46047 | 0.00 | — | 0.01 | Jan 7, 2022 | A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via the gf_hinter_finalize function. | |||
| CVE-2021-46046 | 0.00 | — | 0.01 | Jan 7, 2022 | A Pointer Derefernce Vulnerbility exists GPAC 1.0.1 the gf_isom_box_size function, which could cause a Denial of Service (context-dependent). | |||
| CVE-2021-46051 | 0.00 | — | 0.01 | Jan 7, 2022 | A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via the Media_IsSelfContained function, which could cause a Denial of Service. . | |||
| CVE-2021-46045 | 0.00 | — | 0.01 | Jan 7, 2022 | GPAC 1.0.1 is affected by: Abort failed. The impact is: cause a denial of service (context-dependent). | |||
| CVE-2021-46049 | 0.00 | — | 0.01 | Jan 7, 2022 | A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via the gf_fileio_check function, which could cause a Denial of Service. | |||
| CVE-2021-46043 | 0.00 | — | 0.01 | Jan 6, 2022 | A Pointer Dereference Vulnerability exits in GPAC 1.0.1 in the gf_list_count function, which causes a Denial of Service. | |||
| CVE-2021-46041 | 0.00 | — | 0.01 | Jan 6, 2022 | A Segmentation Fault Vulnerability exists in GPAC 1.0.1 via the co64_box_new function, which causes a Denial of Service. | |||
| CVE-2021-46040 | 0.00 | — | 0.01 | Jan 6, 2022 | A Pointer Dereference Vulnerabilty exists in GPAC 1.0.1 via the finplace_shift_moov_meta_offsets function, which causes a Denial of Servie (context-dependent). | |||
| CVE-2021-46039 | 0.00 | — | 0.01 | Jan 6, 2022 | A Pointer Dereference Vulnerabilty exists in GPAC 1.0.1 via the shift_chunk_offsets.part function, which causes a Denial of Service (context-dependent). |
- CVE-2021-40574Jan 13, 2022risk 0.00cvss —epss 0.01
The binary MP4Box in Gpac from 0.9.0-preview to 1.0.1 has a double-free vulnerability in the gf_text_get_utf8_line function in load_text.c, which allows attackers to cause a denial of service, even code execution and escalation of privileges.
- CVE-2021-40563Jan 12, 2022risk 0.00cvss —epss 0.01
A Segmentation fault exists casued by null pointer dereference exists in Gpac through 1.0.1 via the naludmx_create_avc_decoder_config function in reframe_nalu.c when using mp4box, which causes a denial of service.
- CVE-2021-36417Jan 12, 2022risk 0.00cvss —epss 0.01
A heap-based buffer overflow vulnerability exists in GPAC v1.0.1 in the gf_isom_dovi_config_get function in MP4Box, which causes a denial of service or execute arbitrary code via a crafted file.
- CVE-2021-40565Jan 12, 2022risk 0.00cvss —epss 0.01
A Segmentation fault caused by a null pointer dereference vulnerability exists in Gpac through 1.0.1 via the gf_avc_parse_nalu function in av_parsers.c when using mp4box, which causes a denial of service.
- CVE-2021-40559Jan 12, 2022risk 0.00cvss —epss 0.01
A null pointer deference vulnerability exists in gpac through 1.0.1 via the naludmx_parse_nal_avc function in reframe_nalu, which allows a denail of service.
- CVE-2021-40562Jan 12, 2022risk 0.00cvss —epss 0.01
A Segmentation fault caused by a floating point exception exists in Gpac through 1.0.1 using mp4box via the naludmx_enqueue_or_dispatch function in reframe_nalu.c, which causes a denial of service.
- CVE-2021-40566Jan 12, 2022risk 0.00cvss —epss 0.01
A Segmentation fault casued by heap use after free vulnerability exists in Gpac through 1.0.1 via the mpgviddmx_process function in reframe_mpgvid.c when using mp4box, which causes a denial of service.
- CVE-2021-40564Jan 12, 2022risk 0.00cvss —epss 0.01
A Segmentation fault caused by null pointer dereference vulnerability eists in Gpac through 1.0.2 via the avc_parse_slice function in av_parsers.c when using mp4box, which causes a denial of service.
- CVE-2020-25427Jan 10, 2022risk 0.00cvss —epss 0.01
A Null pointer dereference vulnerability exits in MP4Box - GPAC version 0.8.0-rev177-g51a8ef874-master via the gf_isom_get_track_id function, which causes a denial of service.
- CVE-2021-36414Jan 10, 2022risk 0.00cvss —epss 0.01
A heab-based buffer overflow vulnerability exists in MP4Box in GPAC 1.0.1 via media.c, which allows attackers to cause a denial of service or execute arbitrary code via a crafted file.
- CVE-2021-36412Jan 10, 2022risk 0.00cvss —epss 0.01
A heap-based buffer overflow vulnerability exists in MP4Box in GPAC 1.0.1 via the gp_rtp_builder_do_mpeg12_video function, which allows attackers to possibly have unspecified other impact via a crafted file in the MP4Box command,
- CVE-2021-46047Jan 7, 2022risk 0.00cvss —epss 0.01
A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via the gf_hinter_finalize function.
- CVE-2021-46046Jan 7, 2022risk 0.00cvss —epss 0.01
A Pointer Derefernce Vulnerbility exists GPAC 1.0.1 the gf_isom_box_size function, which could cause a Denial of Service (context-dependent).
- CVE-2021-46051Jan 7, 2022risk 0.00cvss —epss 0.01
A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via the Media_IsSelfContained function, which could cause a Denial of Service. .
- CVE-2021-46045Jan 7, 2022risk 0.00cvss —epss 0.01
GPAC 1.0.1 is affected by: Abort failed. The impact is: cause a denial of service (context-dependent).
- CVE-2021-46049Jan 7, 2022risk 0.00cvss —epss 0.01
A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via the gf_fileio_check function, which could cause a Denial of Service.
- CVE-2021-46043Jan 6, 2022risk 0.00cvss —epss 0.01
A Pointer Dereference Vulnerability exits in GPAC 1.0.1 in the gf_list_count function, which causes a Denial of Service.
- CVE-2021-46041Jan 6, 2022risk 0.00cvss —epss 0.01
A Segmentation Fault Vulnerability exists in GPAC 1.0.1 via the co64_box_new function, which causes a Denial of Service.
- CVE-2021-46040Jan 6, 2022risk 0.00cvss —epss 0.01
A Pointer Dereference Vulnerabilty exists in GPAC 1.0.1 via the finplace_shift_moov_meta_offsets function, which causes a Denial of Servie (context-dependent).
- CVE-2021-46039Jan 6, 2022risk 0.00cvss —epss 0.01
A Pointer Dereference Vulnerabilty exists in GPAC 1.0.1 via the shift_chunk_offsets.part function, which causes a Denial of Service (context-dependent).
Page 13 of 21