188 matches found
CVE-2021-31260
The MergeTrack function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
Null pointer dereference
The HintFile function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
UBUNTU-CVE-2021-31261
The gfhintertracknew function in GPAC 1.0.1 allows attackers to read memory via a crafted file in the MP4Box command...
UBUNTU-CVE-2021-31262
The AV1DuplicateConfig function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
Null pointer dereference
The MergeTrack function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
CVE-2021-31259
The gfisomcencgetdefaultinfointernal function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
UBUNTU-CVE-2021-31257
The HintFile function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
CVE-2021-31258
The gfisomsetextractionslc function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
Null pointer dereference
The AV1DuplicateConfig function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
UBUNTU-CVE-2021-31259
The gfisomcencgetdefaultinfointernal function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
UBUNTU-CVE-2021-31260
The MergeTrack function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
CVE-2021-31261
CVE-2021-31261 affects GPAC 1.0.1; the gf_hinter_track_new path allows memory read via a crafted MP4Box input. The impact is information disclosure (read memory) with local access and, per sources, user interaction may be required. Mitigation: upgrade GPAC to a newer release (Gentoo GLSA 202408-2...
CVE-2021-31259
GPAC 1.0.1 contains a NULL pointer dereference in gf_isom_cenc_get_default_info_internal triggered by a crafted MP4Box file, enabling a denial of service. Upstream Gentoo GLSA recommends upgrading to GPAC >= 2.2.0. Connected sources confirm affected version and remediation guidance.
CVE-2021-31262
GPAC 1.0.1 has a NULL pointer dereference in AV1_DuplicateConfig that can be triggered by a crafted MP4Box file, leading to denial of service. This CVE (CVE-2021-31262) is reported across multiple sources (NVD entry and CNVD/OSV/Gentoo advisories) with the same root cause. Affected component: GPA...
CVE-2021-31260
The MergeTrack function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
CVE-2021-31258
CVE-2021-31258 affects GPAC 1.0.1: the function gf_isom_set_extraction_slc can trigger a NULL pointer dereference when processing a crafted MP4Box file, leading to denial of service. Exploitation details are not provided in the available documents. Remediation visible in Gentoo GLSA 2024-08-21 re...
CVE-2021-31259
The gfisomcencgetdefaultinfointernal function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
CVE-2021-31257
The HintFile function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
CVE-2021-31258
The gfisomsetextractionslc function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
CVE-2021-31261
The gfhintertracknew function in GPAC 1.0.1 allows attackers to read memory via a crafted file in the MP4Box command...