CVE-2021-41456

There is a stack buffer overflow in MP4Box v1.0.1 at src/filters/dmxnhml.c:1004 in the nhmldmxsendsample function szXmlTo parameter which leads to a denial of service vulnerability...

CVE-2021-41459

There is a stack buffer overflow in MP4Box v1.0.1 at src/filters/dmxnhml.c:1008 in the nhmldmxsendsample function szXmlFrom parameter which leads to a denial of service vulnerability...

Gpac MP4Box 缓冲区错误漏洞

Gpac MP4Box is a multimedia packager. It is mainly used to process ISOBMF files e.g. MP4, 3GP, but can also be used to import/export media from AVI, MPG, MKV, MPEG-2 TS and other container files.Gpac MP4Box suffers from a buffer overflow vulnerability, which can be exploited by attackers to crash...

PT-2021-23301 · Mp4Box · Mp4Box

Name of the Vulnerable Software and Affected Versions: MP4Box version 1.0.1 Description: The issue is a stack buffer overflow in the nhmldmx send sample function, specifically with the szXmlTo parameter, located at src/filters/dmx nhml.c:1004. This leads to a denial of service vulnerability...

PT-2021-23303

Name of the Vulnerable Software and Affected Versions MP4Box version 1.0.1 Description The issue is a stack buffer overflow in the nhmldmx send sample function at src/filters/dmx nhml.c:1008, specifically affecting the szXmlFrom parameter. This leads to a denial of service vulnerability...

CVE-2021-41457

CVE-2021-41457 affects GPAC MP4Box 1.1.0 with a stack buffer overflow in nhmldmx_init_parsing (src/filters/dmx_nhml.c) that leads to denial of service. Multiple connected sources confirm GPAC/MP4Box exposure and provide remediation guidance. Debian advisory notes fixed delivery in GPAC 1.0.1+dfsg...

PT-2021-23302 · Mp4Box · Mp4Box

Name of the Vulnerable Software and Affected Versions: MP4Box version 1.1.0 Description: The issue is a stack buffer overflow in the nhmldmx init parsing function at src/filters/dmx nhml.c, leading to a denial of service. Recommendations: For MP4Box version 1.1.0, consider disabling the nhmldmx...

GPAC Memory Leak Vulnerability (CNVD-2021-79761)

GPAC is a multimedia framework for rich media and is distributed under the LGPL license. a memory leak vulnerability exists in the afraboxread function in MP4Box in GPAC version 1.0.1. An attacker could exploit the vulnerability to read memory via specially crafted files...

GPAC Memory Leak Vulnerability (CNVD-2021-79757)

GPAC is a multimedia framework for rich media and is distributed under the LGPL license. gfisomoinfreadentry function in MP4Box in GPAC version 1.0.1 is vulnerable to a memory leak. An attacker could exploit the vulnerability to read memory via specially crafted files...

GPAC null pointer dereference vulnerability (CNVD-2021-79756)

GPAC is a multimedia framework for rich media and is distributed under the LGPL license. a null pointer dereference vulnerability exists in the trakboxsize function in GPAC version 1.0.1. An attacker could exploit this vulnerability to cause a denial of service via a specially crafted file in the...

GPAC null pointer dereference vulnerability (CNVD-2021-79755)

GPAC is a multimedia framework for rich media and is distributed under the LGPL license. abstboxsize function in GPAC version 1.0.1 is vulnerable to null pointer dereference. An attacker could exploit this vulnerability to cause a denial of service via a specially crafted file in the MP4Box comma...

GPAC Memory Leak Vulnerability (CNVD-2021-79759)

GPAC is a multimedia framework for rich media and is distributed under the LGPL license. a memory leak vulnerability exists in the defparentboxnew function in MP4Box in GPAC version 1.0.1. An attacker can exploit this vulnerability to read memory via specially crafted files...

GPAC Memory Leak Vulnerability (CNVD-2021-79763)

GPAC is a multimedia framework for rich media and is distributed under the LGPL license. a memory leak vulnerability exists in the infeboxread function in MP4Box in GPAC version 1.0.1. An attacker could exploit the vulnerability to read memory via specially crafted files...

GPAC Memory Leak Vulnerability (CNVD-2021-79764)

GPAC is a multimedia framework for rich media and is distributed under the LGPL license. gfisomgetrootod function in MP4Box in GPAC version 1.0.1 is vulnerable to a memory leak. An attacker could exploit the vulnerability to read memory via specially crafted files...

GPAC null pointer dereference vulnerability (CNVD-2021-79762)

GPAC is a multimedia framework for rich media and is distributed under the LGPL license. gfisomvpconfigget function in GPAC version 1.0.1 is vulnerable to null pointer dereference. An attacker can exploit this vulnerability to cause a denial of service via a specially crafted file in the MP4Box...

GPAC null pointer dereference vulnerability (CNVD-2021-79760)

GPAC is a multimedia framework for rich media and is distributed under the LGPL license. a null pointer dereference vulnerability exists in the DumpTrackInfo function in GPAC version 1.0.1. An attacker could exploit this vulnerability to cause a denial of service via a specially crafted file in t...

GPAC null pointer dereference vulnerability (CNVD-2021-79753)

GPAC is a multimedia framework for rich media and is distributed under the LGPL license. gfodfdesccopy function in GPAC version 1.0.1 is vulnerable to null pointer dereference. An attacker could exploit the vulnerability to cause a denial of service via a specially crafted file in the MP4Box...

GPAC stack buffer overflow vulnerability

GPAC is a multimedia framework for rich media and is distributed under the LGPL license. hevcparsevpsextension function in MP4Box in GPAC version 1.0.1 is vulnerable to a stack buffer overflow. An attacker could exploit the vulnerability via specially crafted files to cause a denial of service or...

DEBIAN-CVE-2021-33363

Memory leak in the infeboxread function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file...

CVE-2021-33361

Memory leak in the afraboxread function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file...