3 matches found
CVE-2022-30976
GPAC 2.0.0 misuses a certain Unicode utf8wcslen renamed gfutf8wcslen function in utils/utf.c, resulting in a heap-based buffer over-read, as demonstrated by MP4Box...
Linux Distros Unpatched Vulnerability : CVE-2022-30976
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GPAC 2.0.0 misuses a certain Unicode utf8wcslen renamed gfutf8wcslen function in utils/utf.c, resulting in a heap-based buffer over-read, as demonstrated by...
CVE-2022-30976
CVE-2022-30976 concerns GPAC 2.0.0, where the Unicode utf8_wcslen (gf_utf8_wcslen) usage in utils/utf.c can cause a heap-based buffer over-read, as demonstrated by MP4Box. The concrete affected component is GPAC’s core handling of Unicode strings in utils/utf.c, leading to information disclosure ...