Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-24266HistoryFeb 05, 2024 - 6:15 p.m.
CVE-2024-24266
2024-02-0518:15:52
Debian Security Bug Tracker
security-tracker.debian.org
5
cve-2024-24266
use-after-free
gpac v2.2.1
dasher_configure_pid
vulnerability
dasher.c
unix
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.6 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.0%
gpac v2.2.1 was discovered to contain a Use-After-Free (UAF) vulnerability via the dasher_configure_pid function at /src/filters/dasher.c.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | gpac | <= 1.0.1+dfsg1-4+deb11u3 | gpac_1.0.1+dfsg1-4+deb11u3_all.deb |
| Debian | 999 | all | gpac | <= 2.2.1+dfsg1-3.1 | gpac_2.2.1+dfsg1-3.1_all.deb |
Related
cve
cve
CVE-2024-24266
2024-02-05 18:15:52
cvelist
cvelist
CVE-2024-24266
2024-02-05 00:00:00
osv
osv
CVE-2024-24266
2024-02-05 18:15:52
ubuntucve
ubuntucve
CVE-2024-24266
2024-02-05 00:00:00
nvd
nvd
CVE-2024-24266
2024-02-05 18:15:52
prion
prion
Double free
2024-02-05 18:15:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.6 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.0%
Related for DEBIANCVE:CVE-2024-24266