Lucene search
GoogleOSV:CVE-2021-21840HistoryAug 25, 2021 - 7:15 p.m.
CVE-2021-21840
2021-08-2519:15:09
Google
osv.dev
7
cve-2021-21840
gpac library
mpeg-4 decoding
integer overflow
heap-based buffer overflow
memory corruption
video file vulnerability
software vulnerability
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input used to process an atom using the “saio” FOURCC code cause an integer overflow due to unchecked arithmetic resulting in a heap-based buffer overflow that causes memory corruption. An attacker can convince a user to open a video to trigger this vulnerability.
Related
cvelist
cvelist
CVE-2021-21840
2021-08-25 18:21:34
veracode
veracode
Denial Of Service (DoS)
2021-09-02 18:49:11
cnvd
cnvd
ubuntucve
ubuntucve
CVE-2021-21840
2021-08-25 00:00:00
cve
cve
CVE-2021-21840
2021-08-25 19:15:09
debiancve
debiancve
CVE-2021-21840
2021-08-25 19:15:09
prion
prion
Integer overflow
2021-08-25 19:15:00
nvd
nvd
CVE-2021-21840
2021-08-25 19:15:09
talos
talos
osv
osv
gpac - security update
2021-08-31 00:00:00
mageia
mageia
Updated gpac packages fix security vulnerability
2021-09-23 07:49:29
nessus
nessus
Debian DSA-4966-1 : gpac - security update
2021-09-01 00:00:00
GLSA-202408-21 : GPAC: Multiple Vulnerabilities
2024-08-10 00:00:00
debian
debian
[SECURITY] [DSA 4966-1] gpac security update
2021-08-31 21:07:40
openvas
openvas
Mageia: Security Advisory (MGASA-2021-0431)
2022-01-28 00:00:00
Debian: Security Advisory (DSA-4966-1)
2021-09-02 00:00:00
gentoo
gentoo
GPAC: Multiple Vulnerabilities
2024-08-10 00:00:00