130 matches found
CVE-2020-16159
GoPro gpmf-parser 1.5 has a heap out-of-bounds read and segfault in GPMFScaledData. Parsing malicious input can result in a crash or information disclosure...
CVE-2020-16158
GoPro gpmf-parser through 1.5 has a stack out-of-bounds write vulnerability in GPMFExpandComplexTYPE. Parsing malicious input can result in a crash or potentially arbitrary code execution...
CVE-2020-16158
GoPro gpmf-parser through 1.5 has a stack out-of-bounds write vulnerability in GPMFExpandComplexTYPE. Parsing malicious input can result in a crash or potentially arbitrary code execution...
Design/Logic Flaw
GoPro gpmf-parser 1.5 has a division-by-zero vulnerability in GPMFScaledData. Parsing malicious input can result in a crash...
Stack overflow
GoPro gpmf-parser through 1.5 has a stack out-of-bounds write vulnerability in GPMFExpandComplexTYPE. Parsing malicious input can result in a crash or potentially arbitrary code execution...
Design/Logic Flaw
GoPro gpmf-parser 1.5 has a division-by-zero vulnerability in GPMFDecompress. Parsing malicious input can result in a crash...
Heap overflow
GoPro gpmf-parser 1.5 has a heap out-of-bounds read and segfault in GPMFScaledData. Parsing malicious input can result in a crash or information disclosure...
CVE-2020-16161
GoPro gpmf-parser 1.5 has a division-by-zero vulnerability in GPMFScaledData. Parsing malicious input can result in a crash...
CVE-2020-16161
The CVE-2020-16161 entry concerns GoPro gpmf-parser 1.5, with a division-by-zero vulnerability in GPMF_ScaledData() when parsing malicious input. This can cause a crash (availability impact) as noted in the description and CVSS metrics (base score 5.0/7.5 depending on vector). The provided docume...
CVE-2020-16160
CVE-2020-16160 affects GoPro gpmf-parser 1.5. The root cause is a division-by-zero in the function GPMF_Decompress() when parsing input, which can lead to a crash. The vulnerability’s impact as per the data indicates availability disruption (CVSS3.1 base score 7.5, HIGH) but no exploitation detai...
CVE-2020-16160
GoPro gpmf-parser 1.5 has a division-by-zero vulnerability in GPMFDecompress. Parsing malicious input can result in a crash...
CVE-2020-16159
GoPro gpmf-parser 1.5 has a heap out-of-bounds read and segfault in GPMFScaledData. Parsing malicious input can result in a crash or information disclosure...
CVE-2020-16159
CVE-2020-16159 affects GoPro gpmf-parser 1.5. The issue is a heap out-of-bounds read in GPMF_ScaledData(), triggered by parsing malicious input, leading to a crash and potential information disclosure. Documents do not provide affected product versions beyond 1.5, exploitation details, or remedia...
CVE-2020-16158
GoPro gpmf-parser through 1.5 has a stack out-of-bounds write vulnerability in GPMFExpandComplexTYPE. Parsing malicious input can result in a crash or potentially arbitrary code execution...
CVE-2020-16158
CVE-2020-16158 concerns GoPro’s gpmf-parser up to version 1.5, where a stack out-of-bounds write occurs in the function GPMF_ExpandComplexTYPE() . Parsing crafted input can lead to a crash or potentially arbitrary code execution. The connected documents reaffirm the same description across multip...
CVE-2019-20089
GoPro GPMF-parser 1.2.3 has an heap-based buffer over-read in GPMFSeekToSamples in GPMFparse.c for the size calculation...
CVE-2019-20088
GoPro GPMF-parser 1.2.3 has a heap-based buffer over-read in GetPayload in GPMFmp4reader.c...
CVE-2019-20087
GoPro GPMF-parser 1.2.3 has a heap-based buffer over-read in GPMFseekToSamples in GPMF-parse.c for the "matching tags" feature...
CVE-2019-20087
GoPro GPMF-parser 1.2.3 has a heap-based buffer over-read in GPMFseekToSamples in GPMF-parse.c for the "matching tags" feature...
CVE-2019-20086
GoPro GPMF-parser 1.2.3 has a heap-based buffer over-read in GPMFNext in GPMFparser.c...