CVE-2022-47657
GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is affected by CVE-2022-47657 due to a buffer overflow in hevc_parse_vps_extension (media_tools/av_parsers.c:7662). The connected advisories indicate vendor-specific fixes: Debian's DSA-5411-1 patching to gpac 1.0.1+dfsg1-4+deb11u2, Gentoo GLSA-202408-21 reco...