UBUNTU-CVE-2026-8124

A security vulnerability has been detected in GPAC up to 26.02.0. This affects the function sidxboxread of the file src/isomedia/boxcodebase.c. The manipulation leads to allocation of resources. The attack must be carried out locally. The exploit has been disclosed publicly and may be used. The...

CVE-2026-8124

A security vulnerability has been detected in GPAC up to 26.02.0. This affects the function sidxboxread of the file src/isomedia/boxcodebase.c. The manipulation leads to allocation of resources. The attack must be carried out locally. The exploit has been disclosed publicly and may be used. The...

CVE-2026-8124 GPAC box_code_base.c sidx_box_read allocation of resources

A security vulnerability has been detected in GPAC up to 26.02.0. This affects the function sidxboxread of the file src/isomedia/boxcodebase.c. The manipulation leads to allocation of resources. The attack must be carried out locally. The exploit has been disclosed publicly and may be used. The...

CVE-2026-7135 GPAC MP4Box box_code_base.c elng_box_read out-of-bounds

A security flaw has been discovered in GPAC up to 26.03-DEV-rev105-g8f39a1eb3-master. Affected by this vulnerability is the function elngboxread of the file src/isomedia/boxcodebase.c of the component MP4Box. Performing a manipulation of the argument elng results in out-of-bounds read. The attack...

CVE-2019-20159

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a memory leak in dinfNew in isomedia/boxcodebase.c...

Linux Distros Unpatched Vulnerability : CVE-2018-21017

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GPAC 0.7.1 has a memory leak in dinfRead in isomedia/boxcodebase.c. CVE-2018-21017 Note that Nessus relies on the presence of the package as reported by the...

Linux Distros Unpatched Vulnerability : CVE-2020-19750

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in gpac 0.8.0. The strdup function in boxcodebase.c has a heap-based buffer over-read. CVE-2020-19750 Note that Nessus relies on the...

Linux Distros Unpatched Vulnerability : CVE-2021-32270

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function vwidboxdel located in boxcodebase.c. It allows an attacker t...

CVE-2023-47465

An issue in GPAC v.2.2.1 and before allows a local attacker to cause a denial of service DoS via the cttsboxread function of file src/isomedia/boxcodebase.c...

DEBIAN-CVE-2023-47465

An issue in GPAC v.2.2.1 and before allows a local attacker to cause a denial of service DoS via the cttsboxread function of file src/isomedia/boxcodebase.c...

UBUNTU-CVE-2023-47465

An issue in GPAC v.2.2.1 and before allows a local attacker to cause a denial of service DoS via the cttsboxread function of file src/isomedia/boxcodebase.c...

GPAC Security Vulnerabilities

GPAC is an open source multimedia framework. A security vulnerability exists in GPAC v.2.2.1. An attacker can exploit this vulnerability to cause a Denial of Service DoS via the cttsboxread function in the file src/isomedia/boxcodebase.c...

GPAC 代码问题漏洞

GPAC is an open source multimedia framework. gpac has a security vulnerability that stems from a null pointer dereference vulnerability in the xtraboxwrite function in /boxcodebase.c in GPAC 1.1.0, which can lead to a denial of service. No details of the vulnerability are currently available...

Denial Of Service (DoS)

gpac is vulnerable to denial of service. The vulnerability exists due a NULL pointer dereference in the function vwidboxdel located in boxcodebase.c...

DEBIAN-CVE-2021-32270

An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function vwidboxdel located in boxcodebase.c. It allows an attacker to cause Denial of Service...

UBUNTU-CVE-2021-32270

An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function vwidboxdel located in boxcodebase.c. It allows an attacker to cause Denial of Service...

GPAC 代码问题漏洞

GPAC is a multimedia framework for rich media and is distributed under the LGPL license. vwidboxdel function in boxcodebase.c in GPAC 20200801 and earlier versions is vulnerable to null pointer dereference. An attacker could exploit this vulnerability to cause a denial of service...

DEBIAN-CVE-2020-19750

An issue was discovered in gpac 0.8.0. The strdup function in boxcodebase.c has a heap-based buffer over-read...

DEBIAN-CVE-2020-11558

An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by MP4Box. audiosampleentryRead in isomedia/boxcodebase.c does not properly decide when to make gfisomboxdel calls. This leads to various use-after-free outcomes involving mdiaRead, gfisomdeletemovie, and gfisomparsemovieboxes...

DEBIAN-CVE-2019-20171

An issue was discovered in GPAC version 0.5.2 and 0.9.0-development-20191109. There are memory leaks in metxNew in isomedia/boxcodebase.c and abstRead in isomedia/boxcodeadobe.c...