Foxit PDF Reader Javascript Field Action Validate Remote Code Execution Vulnerability

Summary An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader version 9.7.0.29435. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to...

jenkins: Stored XSS vulnerability in expandable textbox form control

In Jenkins 2.196 and earlier, LTS 2.176.3 and earlier, the f:expandableTextBox form control interpreted its content as HTML when expanded, resulting in a stored XSS vulnerability exploitable by users with permission to define its contents typically Job/Configure...

DEBIAN-CVE-2019-20208

dimCRead in isomedia/boxcode3gpp.c in GPAC from 0.5.2 to 0.8.0 has a stack-based buffer overflow...

UBUNTU-CVE-2019-20208

dimCRead in isomedia/boxcode3gpp.c in GPAC from 0.5.2 to 0.8.0 has a stack-based buffer overflow...

GPAC buffer overflow vulnerability (CNVD-2020-04701)

GPAC is a multimedia framework for rich media and distributed under the LGPL license. A stack buffer overflow vulnerability exists in dimCRead in isomedia/boxcode3gpp.c in GPAC 0.8.0, which can be exploited by an attacker to cause a denial of service via specially crafted input...

PT-2020-10370 · Gpac +1 · Gpac +1

Name of the Vulnerable Software and Affected Versions: GPAC version 0.8.0 Description: The issue is related to a stack-based buffer overflow in the dimC Read function, located in the isomedia/box code 3gpp.c file of GPAC. Recommendations: For GPAC version 0.8.0, at the moment, there is no...

DEBIAN-CVE-2019-20171

An issue was discovered in GPAC version 0.5.2 and 0.9.0-development-20191109. There are memory leaks in metxNew in isomedia/boxcodebase.c and abstRead in isomedia/boxcodeadobe.c...

DEBIAN-CVE-2019-20165

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function ilstitemRead in isomedia/boxcodeapple.c...

DEBIAN-CVE-2019-20162

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is heap-based buffer overflow in the function gfisomboxparseex in isomedia/boxfuncs.c...

UBUNTU-CVE-2019-20159

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a memory leak in dinfNew in isomedia/boxcodebase.c...

Double free

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function trakRead in isomedia/boxcodebase.c...

UBUNTU-CVE-2019-20166

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function gfisomdump in isomedia/boxdump.c...

UBUNTU-CVE-2019-20167

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function sencParse in isomedia/boxcodedrm.c...

UBUNTU-CVE-2019-20164

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function gfisomboxdel in isomedia/boxfuncs.c...

UBUNTU-CVE-2019-20165

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function ilstitemRead in isomedia/boxcodeapple.c...

UBUNTU-CVE-2019-20168

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function gfisomboxdumpex in isomedia/boxfuncs.c...

UBUNTU-CVE-2019-20162

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is heap-based buffer overflow in the function gfisomboxparseex in isomedia/boxfuncs.c...

GPAC Resource Management Error Vulnerability (CNVD-2020-00527)

GPAC is an open source multimedia framework. A resource management error vulnerability exists in the 'trakRead' function of the isomedia/boxcodebase.c file in GPAC versions 0.8.0 and 0.9.0-development-20191109. The vulnerability stems from a mismanagement of system resources e.g., memory, disk...

GPAC memory leak vulnerability (CNVD-2020-03951)

GPAC is an open source multimedia framework. A memory leak vulnerability exists in the dinfNew of the isomedia/boxcodebase.c file in GPAC versions 0.8.0 and 0.9.0-development-20191109. No detailed vulnerability details are provided at this time...

GPAC Code Issue Vulnerability

GPAC is an open source multimedia framework. A code issue vulnerability exists in the 'ilstitemRead' function of the isomedia/boxcodeapple.c file in GPAC versions 0.8.0 and 0.9.0-development-20191109. The vulnerability stems from an improperly designed or implemented code development process for ...