VYPR

Vendor CVEs

Gpac

All CVEs

420 total · sorted by risk
  • CVE-2023-23143Jan 20, 2023
    risk 0.00cvss epss 0.00

    Buffer overflow vulnerability in function avc_parse_slice in file media_tools/av_parsers.c. GPAC version 2.3-DEV-rev1-g4669ba229-master.

  • CVE-2023-0358Jan 18, 2023
    risk 0.00cvss epss 0.00

    Use After Free in GitHub repository gpac/gpac prior to 2.3.0-DEV.

  • CVE-2022-47089Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer Overflow via gf_vvc_read_sps_bs_internal function of media_tools/av_parsers.c

  • CVE-2022-47656Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4box 2.1-DEV-rev617-g85ce76efd is vulnerable to Buffer Overflow in gf_hevc_read_sps_bs_internal function of media_tools/av_parsers.c:8273

  • CVE-2022-47086Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4Box v2.1-DEV-rev574-g9d5bb184b contains a segmentation violation via the function gf_sm_load_init_swf at scene_manager/swf_parse.c

  • CVE-2022-47663Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4box 2.1-DEV-rev649-ga8f438d20 is vulnerable to buffer overflow in h263dmx_process filters/reframe_h263.c:609

  • CVE-2022-47662Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4Box 2.1-DEV-rev649-ga8f438d20 has a segment fault (/stack overflow) due to infinite recursion in Media_GetSample isomedia/media.c:662

  • CVE-2022-47661Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4Box 2.1-DEV-rev649-ga8f438d20 is vulnerable to Buffer Overflow via media_tools/av_parsers.c:4988 in gf_media_nalu_add_emulation_bytes

  • CVE-2022-47660Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is has an integer overflow in isomedia/isom_write.c

  • CVE-2022-46490Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC version 2.1-DEV-rev505-gb9577e6ad-master was discovered to contain a memory leak via the afrt_box_read function at box_code_adobe.c.

  • CVE-2022-47658Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to buffer overflow in function gf_hevc_read_vps_bs_internal of media_tools/av_parsers.c:8039

  • CVE-2022-47087Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4box 2.1-DEV-rev574-g9d5bb184b has a Buffer overflow in gf_vvc_read_pps_bs_internal function of media_tools/av_parsers.c

  • CVE-2022-47657Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to buffer overflow in function hevc_parse_vps_extension of media_tools/av_parsers.c:7662

  • CVE-2022-47654Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4box 2.1-DEV-rev593-g007bf61a0 is vulnerable to Buffer Overflow in gf_hevc_read_sps_bs_internal function of media_tools/av_parsers.c:8261

  • CVE-2022-47659Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to Buffer Overflow in gf_bs_read_data

  • CVE-2022-47095Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer overflow in hevc_parse_vps_extension function of media_tools/av_parsers.c

  • CVE-2022-46489Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC version 2.1-DEV-rev505-gb9577e6ad-master was discovered to contain a memory leak via the gf_isom_box_parse_ex function at box_funcs.c.

  • CVE-2022-47093Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to heap use-after-free via filters/dmx_m2ts.c:470 in m2tsdmx_declare_pid

  • CVE-2022-47088Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer Overflow.

  • CVE-2022-47094Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Null pointer dereference via filters/dmx_m2ts.c:343 in m2tsdmx_declare_pid

  • CVE-2022-47092Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is contains an Integer overflow vulnerability in gf_hevc_read_sps_bs_internal function of media_tools/av_parsers.c:8316

  • CVE-2022-47653Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4box 2.1-DEV-rev593-g007bf61a0 is vulnerable to Buffer Overflow in eac3_update_channels function of media_tools/av_parsers.c:9113

  • CVE-2022-47091Jan 5, 2023
    risk 0.00cvss epss 0.00

    GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer Overflow in gf_text_process_sub function of filters/load_text.c

  • CVE-2022-45283Dec 5, 2022
    risk 0.00cvss epss 0.00

    GPAC MP4box v2.0.0 was discovered to contain a stack overflow in the smil_parse_time_list parameter at /scenegraph/svg_attributes.c.

  • CVE-2022-45202Nov 29, 2022
    risk 0.00cvss epss 0.00

    GPAC v2.1-DEV-rev428-gcb8ae46c8-master was discovered to contain a stack overflow via the function dimC_box_read at isomedia/box_code_3gpp.c.

  • CVE-2022-45204Nov 29, 2022
    risk 0.00cvss epss 0.00

    GPAC v2.1-DEV-rev428-gcb8ae46c8-master was discovered to contain a memory leak via the function dimC_box_read at isomedia/box_code_3gpp.c.

  • CVE-2022-4202Nov 29, 2022
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as problematic, was found in GPAC 2.1-DEV-rev490-g68064e101-master. Affected is the function lsr_translate_coords of the file laser/lsr_dec.c. The manipulation leads to integer overflow. It is possible to launch the attack remotely. The…

  • CVE-2022-45343Nov 29, 2022
    risk 0.00cvss epss 0.00

    GPAC v2.1-DEV-rev478-g696e6f868-master was discovered to contain a heap use-after-free via the Q_IsTypeOn function at /gpac/src/bifs/unquantize.c.

  • CVE-2022-3957Nov 11, 2022
    risk 0.00cvss epss 0.01

    A vulnerability classified as problematic was found in GPAC. Affected by this vulnerability is the function svg_parse_preserveaspectratio of the file scenegraph/svg_attributes.c of the component SVG Parser. The manipulation leads to memory leak. The attack can be launched…

  • CVE-2022-43254Nov 2, 2022
    risk 0.00cvss epss 0.00

    GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a memory leak via the component gf_list_new at utils/list.c.

  • CVE-2022-43255Nov 2, 2022
    risk 0.00cvss epss 0.00

    GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a memory leak via the component gf_odf_new_iod at odf/odf_code.c.

  • CVE-2022-43039Oct 19, 2022
    risk 0.00cvss epss 0.00

    GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function gf_isom_meta_restore_items_ref at /isomedia/meta.c.

  • CVE-2022-43042Oct 19, 2022
    risk 0.00cvss epss 0.00

    GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a heap buffer overflow via the function FixSDTPInTRAF at isomedia/isom_intern.c.

  • CVE-2022-43043Oct 19, 2022
    risk 0.00cvss epss 0.00

    GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function BD_CheckSFTimeOffset at /bifs/field_decode.c.

  • CVE-2022-43045Oct 19, 2022
    risk 0.00cvss epss 0.00

    GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function gf_dump_vrml_sffield at /scene_manager/scene_dump.c.

  • CVE-2022-43044Oct 19, 2022
    risk 0.00cvss epss 0.00

    GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function gf_isom_get_meta_item_info at /isomedia/meta.c.

  • CVE-2022-43040Oct 19, 2022
    risk 0.00cvss epss 0.00

    GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a heap buffer overflow via the function gf_isom_box_dump_start_ex at /isomedia/box_funcs.c.

  • CVE-2022-3222Sep 15, 2022
    risk 0.00cvss epss 0.01

    Uncontrolled Recursion in GitHub repository gpac/gpac prior to 2.1.0-DEV.

  • CVE-2022-3178Sep 12, 2022
    risk 0.00cvss epss 0.00

    Buffer Over-read in GitHub repository gpac/gpac prior to 2.1.0-DEV.

  • CVE-2022-38530Sep 6, 2022
    risk 0.00cvss epss 0.00

    GPAC v2.1-DEV-rev232-gfcaa01ebb-master was discovered to contain a stack overflow when processing ISOM_IOD.

  • CVE-2022-36186Aug 17, 2022
    risk 0.00cvss epss 0.01

    A Null Pointer dereference vulnerability exists in GPAC 2.1-DEV-revUNKNOWN-master via the function gf_filter_pid_set_property_full () at filter_core/filter_pid.c:5250,which causes a Denial of Service (DoS). This vulnerability was fixed in commit b43f9d1.

  • CVE-2022-36190Aug 17, 2022
    risk 0.00cvss epss 0.01

    GPAC mp4box 2.1-DEV-revUNKNOWN-master has a use-after-free vulnerability in function gf_isom_dovi_config_get. This vulnerability was fixed in commit fef6242.

  • CVE-2022-2549Jul 27, 2022
    risk 0.00cvss epss 0.00

    NULL Pointer Dereference in GitHub repository gpac/gpac prior to v2.1.0-DEV.

  • CVE-2022-2453Jul 19, 2022
    risk 0.00cvss epss 0.00

    Use After Free in GitHub repository gpac/gpac prior to 2.1-DEV.

  • CVE-2022-2454Jul 19, 2022
    risk 0.00cvss epss 0.00

    Integer Overflow or Wraparound in GitHub repository gpac/gpac prior to 2.1-DEV.

  • CVE-2021-40607Jun 28, 2022
    risk 0.00cvss epss 0.01

    The schm_box_size function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command.

  • CVE-2021-40606Jun 28, 2022
    risk 0.00cvss epss 0.01

    The gf_bs_write_data function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command.

  • CVE-2021-40609Jun 28, 2022
    risk 0.00cvss epss 0.01

    The GetHintFormat function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command.

  • CVE-2021-40608Jun 28, 2022
    risk 0.00cvss epss 0.01

    The gf_hinter_track_finalize function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command.

  • CVE-2021-40944Jun 28, 2022
    risk 0.00cvss epss 0.01

    In GPAC MP4Box 1.1.0, there is a Null pointer reference in the function gf_filter_pid_get_packet function in src/filter_core/filter_pid.c:5394, as demonstrated by GPAC. This can cause a denial of service (DOS).

Page 4 of 9