13 matches found
CVE-2023-39562
GPAC v2.3-DEV-rev449-g5948e4f70-master was discovered to contain a heap-use-after-free via the gfbsalign function at bitstream.c. This vulnerability allows attackers to cause a Denial of Service DoS via supplying a crafted file...
UBUNTU-CVE-2023-39562
GPAC v2.3-DEV-rev449-g5948e4f70-master was discovered to contain a heap-use-after-free via the gfbsalign function at bitstream.c. This vulnerability allows attackers to cause a Denial of Service DoS via supplying a crafted file...
CVE-2023-39562
GPAC v2.3-DEV-rev449-g5948e4f70-master was discovered to contain a heap-use-after-free via the gfbsalign function at bitstream.c. This vulnerability allows attackers to cause a Denial of Service DoS via supplying a crafted file...
Heap overflow
GPAC v2.3-DEV-rev449-g5948e4f70-master was discovered to contain a heap-use-after-free via the gfbsalign function at bitstream.c. This vulnerability allows attackers to cause a Denial of Service DoS via supplying a crafted file...
CVE-2023-39562
GPAC v2.3-DEV-rev449-g5948e4f70-master was discovered to contain a heap-use-after-free via the gfbsalign function at bitstream.c. This vulnerability allows attackers to cause a Denial of Service DoS via supplying a crafted file...
CVE-2023-39562
GPAC v2.3-DEV-rev449-g5948e4f70-master was discovered to contain a heap-use-after-free via the gfbsalign function at bitstream.c. This vulnerability allows attackers to cause a Denial of Service DoS via supplying a crafted file...
CVE-2023-39562
GPAC v2.3-DEV-rev449-g5948e4f70-master was discovered to contain a heap-use-after-free via the gfbsalign function at bitstream.c. This vulnerability allows attackers to cause a Denial of Service DoS via supplying a crafted file...
CVE-2023-39562
Affected software: GPAC, version 2.3-DEV-rev449-g5948e4f70-master. Vulnerable component: heap-use-after-free in gf_bs_align() inside bitstream.c. Root cause: use-after-free in heap allocation handling when processing crafted input, enabling Denial of Service. Practical impact: DoS via crafted fil...
Denial Of Service (DoS)
libgpac.so is vulnerable to Denial Of Service DoS. The vulnerability exists due to the assertion failure in the BSReadByte function of bitstream.c, which allows an attacker to cause an application crash...
CVE-2022-29339
In GPAC 2.1-DEV-rev87-g053aae8-master, function BSReadByte in utils/bitstream.c has a failed assertion, which causes a Denial of Service. This vulnerability was fixed in commit 9ea93a2...
CVE-2017-16803
In Libav through 11.11 and 12.x through 12.1, the smackerdecodetree function in libavcodec/smacker.c does not properly restrict tree recursion, which allows remote attackers to cause a denial of service bitstream.c:buildtable out-of-bounds read and application crash via a crafted Smacker stream...
Input validation
There is an illegal address access in the buildtable function in libavcodec/bitstream.c of Libav 12.1 that will lead to remote denial of service via crafted input...
CVE-2017-11684
CVE-2017-11684 affects Libav 12.1, with an illegal address access in libavcodec/bitstream.c (build_table) that can cause a remote denial-of-service via crafted input. Multiple connected sources (NVD entry and various vulnerability databases) confirm the same description. The CVSS metrics indicate...