Lucene search
China National Vulnerability DatabaseCNVD-2022-85325HistoryNov 30, 2022 - 12:00 a.m.
GPAC Memory Misreference Vulnerability
2022-11-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
gpac
multimedia framework
memory misquoting
vulnerability
q_istypeon function
arbitrary code execution
program crash
open source
0.001 Low
EPSS
Percentile
32.0%
GPAC is an open source multimedia framework. GPAC version v2.1-DEV-rev478-g696e6f868-master is vulnerable to a memory misquoting vulnerability that stems from a confusion in the Q_IsTypeOn function in /gpac/src/bifs/unquantize.c responsible for freeing memory. An attacker could exploit this vulnerability to potentially cause a program crash, arbitrary code execution, etc.
Related
nvd
nvd
CVE-2022-45343
2022-11-29 16:15:09
prion
prion
Heap overflow
2022-11-29 16:15:00
ubuntucve
ubuntucve
CVE-2022-45343
2022-11-29 00:00:00
cvelist
cvelist
CVE-2022-45343
2022-11-29 00:00:00
debiancve
debiancve
CVE-2022-45343
2022-11-29 16:15:09
veracode
veracode
Denial Of Service (DoS)
2022-11-30 01:15:48
osv
osv
CVE-2022-45343
2022-11-29 16:15:09
gpac - security update
2023-05-26 00:00:00
cve
cve
CVE-2022-45343
2022-11-29 16:15:09
debian
debian
[SECURITY] [DSA 5411-1] gpac security update
2023-05-26 14:00:08
nessus
nessus
Debian DSA-5411-1 : gpac - security update
2023-05-27 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5411-1)
2023-05-29 00:00:00