Gpac MP4Box 代码问题漏洞

GPAC MP4Box is a multimedia packager. It is mainly used to process ISOBMF files e.g. MP4, 3GP, but can also be used to import/export media from AVI, MPG, MKV, MPEG-2 TS and other container files.GPAC MP4Box version 0.8.0 has a security vulnerability, which stems from an issue found in...

Information Disclosure

gpac is vulnerable to information disclosure. An attacker is able to exploit the vulnerability by reading memory via a crafted file in the MP4Box command via the gfhintertracknew function...

Denial Of Service (DoS)

gpac:sid is vulnerable to Denial Of Service DoS. The AV1DuplicateConfig function allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...

Denial Of Service (DoS)

gpac is vulnerable to denial of service. The MergeTrack function allows attackers to cause a denial of service via a NULL pointer dereference by submitting a malicious file in the MP4Box command...

Denial Of Service (DoS)

gpac is vulnerable to denial of service. An attacker is able to exploit the vulnerability via a crafted file in the MP4Box command via the gfisomsetextractionslc function...

Denial Of Service (DoS)

gpac:sid is vulnerable to denial of service. Memory leak in the stblGetSampleInfos function in MP4Box allows attackers to read memory via a crafted file...

Denial Of Service (DoS)

gpac is vulnerable to denial of service. The HintFile function allows attackers to cause a denial of service via a NULL pointer dereference by submitting a malicious file in the MP4Box command...

Denial Of Service (DoS)

gpac is vulnerable to denial of service. The vulnerability exists due to a buffer overflow in the abstboxread function in MP4Box in GPAC...

PT-2021-6470 · Gpac · Gpac

Name of the Vulnerable Software and Affected Versions: GPAC version 1.0.1 Description: The issue is related to a memory leak in the gf isom get root od function of the MP4Box component in the GPAC multimedia platform. This allows a remote attacker to access confidential data by using a specially...

GPAC memory leak vulnerability (CNVD-2021-30174)

GPAC is a multimedia framework for rich media and distributed under the LGPL license. A memory leak vulnerability exists in the stblGetSampleInfos function in MP4Box in GPAC version 1.0.1. An attacker can exploit this vulnerability to read memory via specially crafted files...

GPAC buffer overflow vulnerability (CNVD-2021-30173)

GPAC is a multimedia framework for rich media and distributed under the LGPL license. A buffer overflow vulnerability exists in the tencboxread function in MP4Box in GPAC version 1.0.1. An attacker could exploit this vulnerability via specially crafted files to cause a denial of service or execut...

CVE-2021-31262

The AV1DuplicateConfig function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...

DEBIAN-CVE-2021-31256

Memory leak in the stblGetSampleInfos function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file...

CVE-2021-31255

Buffer overflow in the abstboxread function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file...

CVE-2021-31259

The gfisomcencgetdefaultinfointernal function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...

CVE-2021-31254

Buffer overflow in the tencboxread function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file, related invalid IV sizes...

CVE-2021-31260

The MergeTrack function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...

CVE-2021-31256

Memory leak in the stblGetSampleInfos function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file...

CVE-2021-31261

The gfhintertracknew function in GPAC 1.0.1 allows attackers to read memory via a crafted file in the MP4Box command...

DEBIAN-CVE-2021-31262

The AV1DuplicateConfig function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...