54 matches found
CVE-2025-15668
A vulnerability was identified in GPAC up to b40ce70f5. This issue affects the function sgpddelentry of the file src/isomedia/boxcodebase.c of the component MP4Box. Such manipulation of the argument data leads to heap-based buffer overflow. Local access is required to approach this attack. The...
UBUNTU-CVE-2026-8124
A security vulnerability has been detected in GPAC up to 26.02.0. This affects the function sidxboxread of the file src/isomedia/boxcodebase.c. The manipulation leads to allocation of resources. The attack must be carried out locally. The exploit has been disclosed publicly and may be used. The...
CVE-2026-8124 GPAC box_code_base.c sidx_box_read allocation of resources
A security vulnerability has been detected in GPAC up to 26.02.0. This affects the function sidxboxread of the file src/isomedia/boxcodebase.c. The manipulation leads to allocation of resources. The attack must be carried out locally. The exploit has been disclosed publicly and may be used. The...
CVE-2026-8124
A security vulnerability has been detected in GPAC up to 26.02.0. This affects the function sidxboxread of the file src/isomedia/boxcodebase.c. The manipulation leads to allocation of resources. The attack must be carried out locally. The exploit has been disclosed publicly and may be used. The...
CVE-2026-7135 GPAC MP4Box box_code_base.c elng_box_read out-of-bounds
A security flaw has been discovered in GPAC up to 26.03-DEV-rev105-g8f39a1eb3-master. Affected by this vulnerability is the function elngboxread of the file src/isomedia/boxcodebase.c of the component MP4Box. Performing a manipulation of the argument elng results in out-of-bounds read. The attack...
New .NET AOT Malware Hides Code as a Black Box to Evade Detection
Researchers at Howler Cell have discovered a new .NET AOT malware campaign that uses a clever scoring system…...
CVE-2019-20159
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a memory leak in dinfNew in isomedia/boxcodebase.c...
CVE-2019-20165
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function ilstitemRead in isomedia/boxcodeapple.c...
EUVD-2019-10726
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2018-21017
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GPAC 0.7.1 has a memory leak in dinfRead in isomedia/boxcodebase.c. CVE-2018-21017 Note that Nessus relies on the presence of the package as reported by the...
Linux Distros Unpatched Vulnerability : CVE-2019-20167
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function sencParse in...
Linux Distros Unpatched Vulnerability : CVE-2020-19750
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in gpac 0.8.0. The strdup function in boxcodebase.c has a heap-based buffer over-read. CVE-2020-19750 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2022-45204
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GPAC v2.1-DEV-rev428-gcb8ae46c8-master was discovered to contain a memory leak via the function dimCboxread at isomedia/boxcode3gpp.c. CVE-2022-45204 Note that...
Linux Distros Unpatched Vulnerability : CVE-2021-32270
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function vwidboxdel located in boxcodebase.c. It allows an attacker t...
Linux Distros Unpatched Vulnerability : CVE-2021-40569
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The binary MP4Box in Gpac through 1.0.1 has a double-free vulnerability in the ilocentrydel funciton in boxcodemeta.c, which allows attackers to cause a denial ...
CVE-2023-47465
An issue in GPAC v.2.2.1 and before allows a local attacker to cause a denial of service DoS via the cttsboxread function of file src/isomedia/boxcodebase.c...
DEBIAN-CVE-2023-47465
An issue in GPAC v.2.2.1 and before allows a local attacker to cause a denial of service DoS via the cttsboxread function of file src/isomedia/boxcodebase.c...
UBUNTU-CVE-2023-47465
An issue in GPAC v.2.2.1 and before allows a local attacker to cause a denial of service DoS via the cttsboxread function of file src/isomedia/boxcodebase.c...
GPAC Security Vulnerabilities
GPAC is an open source multimedia framework. A security vulnerability exists in GPAC v.2.2.1. An attacker can exploit this vulnerability to cause a Denial of Service DoS via the cttsboxread function in the file src/isomedia/boxcodebase.c...
The vulnerability of the afrt_box_read function in the box_code_adobe.c component of the GPAC multimedia platform allows a intruder to cause a service failure.
The vulnerability of the afrtboxread function in the boxcodeadobe.c component of the GPAC multimedia platform is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...