Lucene search
China National Vulnerability DatabaseCNVD-2021-64085HistoryAug 19, 2021 - 12:00 a.m.
GPAC Project on Advanced Content Integer Overflow Vulnerability (CNVD-2021-64085)
2021-08-1900:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
0.003 Low
EPSS
Percentile
70.0%
GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering. an integer overflow vulnerability exists in the MPEG-4 decoding functionality in GPAC Project on Advanced Content version 1.0.1. The vulnerability stems from unchecked arithmetic. An attacker could exploit the vulnerability via a specially crafted MPEG-4 input in the “stss” decoder to cause a heap buffer overflow, which could lead to memory corruption.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gpac gpac project on advanced content | eq | 1.0.1 |
Related
veracode
veracode
Denial Of Service (DoS)
2021-09-02 18:40:21
nvd
nvd
CVE-2021-21852
2021-08-18 13:15:07
debiancve
debiancve
CVE-2021-21852
2021-08-18 13:15:07
osv
osv
CVE-2021-21852
2021-08-18 13:15:07
gpac - security update
2023-05-26 00:00:00
ubuntucve
ubuntucve
CVE-2021-21852
2021-08-18 00:00:00
cve
cve
CVE-2021-21852
2021-08-18 13:15:07
prion
prion
Integer overflow
2021-08-18 13:15:00
cvelist
cvelist
CVE-2021-21852
2021-08-18 00:00:00
talos
talos
nessus
nessus
Debian DSA-5411-1 : gpac - security update
2023-05-27 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5411-1)
2023-05-29 00:00:00
debian
debian
[SECURITY] [DSA 5411-1] gpac security update
2023-05-26 14:00:08