1828 matches found
CVE-2021-31254
Buffer overflow in the tencboxread function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file, related invalid IV sizes...
CVE-2021-31255
Buffer overflow in the abstboxread function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file...
CVE-2021-31257
The HintFile function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
CVE-2021-31261
The gfhintertracknew function in GPAC 1.0.1 allows attackers to read memory via a crafted file in the MP4Box command...
CVE-2021-31262
The AV1DuplicateConfig function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
CVE-2021-31256
Memory leak in the stblGetSampleInfos function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file...
CVE-2021-31254
Buffer overflow in the tencboxread function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file, related invalid IV sizes...
CVE-2021-31255
Buffer overflow in the abstboxread function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file...
CVE-2021-31256
Memory leak in the stblGetSampleInfos function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file...
CVE-2021-31257
The HintFile function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
CVE-2021-31258
The gfisomsetextractionslc function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
CVE-2021-31260
The MergeTrack function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
CVE-2021-31261
The gfhintertracknew function in GPAC 1.0.1 allows attackers to read memory via a crafted file in the MP4Box command...
CVE-2021-31262
The AV1DuplicateConfig function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
CVE-2021-31259
The gfisomcencgetdefaultinfointernal function in GPAC 1.0.1 allows attackers to cause a denial of service NULL pointer dereference via a crafted file in the MP4Box command...
CVE-2021-31261
CVE-2021-31261 affects GPAC 1.0.1; the gf_hinter_track_new path allows memory read via a crafted MP4Box input. The impact is information disclosure (read memory) with local access and, per sources, user interaction may be required. Mitigation: upgrade GPAC to a newer release (Gentoo GLSA 202408-2...
CVE-2021-31260
CVE-2021-31260 affects GPAC 1.0.1: the MergeTrack function can be triggered by a crafted MP4Box file, causing a NULL pointer dereference and a denial of service. Exploitation details are not provided beyond this description in the sources, but multiple advisories reference a vulnerability in GPAC...
CVE-2021-31258
CVE-2021-31258 affects GPAC 1.0.1: the function gf_isom_set_extraction_slc can trigger a NULL pointer dereference when processing a crafted MP4Box file, leading to denial of service. Exploitation details are not provided in the available documents. Remediation visible in Gentoo GLSA 2024-08-21 re...
CVE-2021-31259
GPAC 1.0.1 contains a NULL pointer dereference in gf_isom_cenc_get_default_info_internal triggered by a crafted MP4Box file, enabling a denial of service. Upstream Gentoo GLSA recommends upgrading to GPAC >= 2.2.0. Connected sources confirm affected version and remediation guidance.
CVE-2021-31256
CVE-2021-31256 affects GPAC 1.0.1’s MP4Box via a memory leak in stbl_GetSampleInfos that allows memory reads from a crafted file. Affected software/version: GPAC 1.0.1. Underlying cause: memory leak in stbl_GetSampleInfos. Impact: information disclosure via crafted input. Mitigation: upgrade to G...