EUVD-2021-32072

Malicious code in bioql PyPI...

PT-2025-30079 · Gpac +1 · Gpac +1

Name of the Vulnerable Software and Affected Versions: GPAC versions up to 2.4 Description: A null pointer dereference issue exists in the gf dash download init segment function within the src/media tools/dash client.c file. Manipulation of the base init url argument can trigger this issue. This...

CVE-2021-30014

There is a integer overflow in mediatools/avparsers.c in the hevcparseslicesegment function in GPAC from v0.9.0-preview to 1.0.1 which results in a crash...

CVE-2019-20208

dimCRead in isomedia/boxcode3gpp.c in GPAC from 0.5.2 to 0.8.0 has a stack-based buffer overflow...

PT-2024-13380 · Gpac +2 · Gpac +2

Name of the Vulnerable Software and Affected Versions: GPAC version 2.3-DEV-revrelease Description: A use after free issue exists, specifically in the gf filterpacket del function in filter core/filter.c at line 38. This can lead to a double-free condition, potentially causing the application to...

CVE-2024-28318

gpac 2.3-DEV-rev921-g422b78ecf-master was discovered to contain a out of boundary write vulnerability via swfgetstring at scenemanager/swfparse.c:325...

CVE-2023-48011

GPAC v2.3-DEV-rev566-g50c2ab06f-master was discovered to contain a heap-use-after-free via the flushrefsamples function at /gpac/src/isomedia/moviefragments.c...

CVE-2023-46930

GPAC 2.3-DEV-rev605-gfc9e29089-master contains a SEGV in gpac/MP4Box in gfisomfindodidfortrack /afltest/gpac/src/isomedia/mediaodf.c:522:14...

PT-2023-5250 · Gpac +2 · Gpac +2

Name of the Vulnerable Software and Affected Versions: GPAC versions prior to 2.3-DEV Description: The issue is related to an out-of-bounds read in the GPAC multimedia platform, specifically in the MPEG12 ParseSeqHdr function. This can lead to a denial of service. The estimated number of...

PT-2023-30209 · Gpac +1 · Gpac +1

Name of the Vulnerable Software and Affected Versions: gpac/gpac versions prior to 2.3-DEV Description: The issue is related to a Divide By Zero error in the gpac/gpac GitHub repository. Recommendations: For versions prior to 2.3-DEV, update to version 2.3-DEV or later to resolve the issue...

CVE-2023-37766

GPAC v2.3-DEV-rev381-g817a848f6-master was discovered to contain a segmentation violation in the gfisomremoveuserdata function at /lib/libgpac.so...

CVE-2022-45343

GPAC v2.1-DEV-rev478-g696e6f868-master was discovered to contain a heap use-after-free via the QIsTypeOn function at /gpac/src/bifs/unquantize.c...

CVE-2022-43042

GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a heap buffer overflow via the function FixSDTPInTRAF at isomedia/isomintern.c...

CVE-2022-29339

In GPAC 2.1-DEV-rev87-g053aae8-master, function BSReadByte in utils/bitstream.c has a failed assertion, which causes a Denial of Service. This vulnerability was fixed in commit 9ea93a2...

CVE-2022-29340

GPAC 2.1-DEV-rev87-g053aae8-master. has a Null Pointer Dereference vulnerability in gfisomparsemovieboxesinternal due to improper return value handling of GFSKIPBOX, which causes a Denial of Service. This vulnerability was fixed in commit 37592ad...

CVE-2022-24576

GPAC 1.0.1 is affected by Use After Free through MP4Box...

Denial Of Serivce (DoS)

gpac is vulnerable to denial of service. This is due to an invalid pointer reference vulnerability exists the gfsvgnodedel function which causes a segmentation fault and application crash...

Information Disclosure

gpac is vulnerable to Information Disclosure. The vulnerability exists due to a heap-based buffer over-read...

PT-2019-16107 · Gpac +1 · Gpac +1

Name of the Vulnerable Software and Affected Versions: GPAC versions 0.8.0 through 0.9.0-development-20191109 Description: A heap-based buffer overflow issue exists in the function gf isom box parse ex located in isomedia/box funcs.c. Recommendations: For GPAC version 0.8.0, update to a version...