GPAC Invalid Pointer Dereference Vulnerability (CNVD-2021-30587)

GPAC is a multimedia framework for rich media and distributed under the LGPL license. An invalid pointer dereference vulnerability exists in the gfhintertrackfinalize function in mediatools/isomhinter.c in GPAC versions 0.8.0 and 1.0.1. No detailed vulnerability details are provided at this time...

GPAC Invalid Pointer Dereference Vulnerability (CNVD-2021-30586)

GPAC is a multimedia framework for rich media and distributed under the LGPL license. An invalid pointer dereference vulnerability exists in the SetupWriters function in isomedia/isomstore.c in GPAC versions 0.8.0 and 1.0.1. No detailed vulnerability details are provided at this time...

DEBIAN-CVE-2020-35982

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function gfhintertrackfinalize in mediatools/isomhinter.c...

CVE-2020-35981

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function SetupWriters in isomedia/isomstore.c...

Null pointer dereference

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function SetupWriters in isomedia/isomstore.c...

Null pointer dereference

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function gfhintertrackfinalize in mediatools/isomhinter.c...

UBUNTU-CVE-2020-35982

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function gfhintertrackfinalize in mediatools/isomhinter.c...

CVE-2020-35981

CVE-2020-35981 affects GPAC versions 0.8.0 and 1.0.1, with an invalid pointer dereference in isomedia/isom_store.c SetupWriters(). The connected sources confirm the root cause and affected component, but do not provide exploitation details or practical workflow. Impact is described across referen...

CVE-2020-35982

GPAC: CVE-2020-35982 involves an invalid pointer dereference in gf_hinter_track_finalize() (media_tools/isom_hinter.c) affecting GPAC 0.8.0 and 1.0.1. Connected sources corroborate the vulnerability and indicate a remediation path: upgrade to GPAC 2.2.0 or newer (as advised by Gentoo GLSA-202408-...

CVE-2020-35981

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function SetupWriters in isomedia/isomstore.c...

CVE-2020-35982

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function gfhintertrackfinalize in mediatools/isomhinter.c...

CVE-2020-35981

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function SetupWriters in isomedia/isomstore.c...

CVE-2020-24340

An issue was discovered in picoTCP and picoTCP-NG through 1.7.0. The code that processes DNS responses in picomdnshandledataasanswersgeneric in picomdns.c does not check whether the number of answers/responses specified in a DNS packet header corresponds to the response data available in the...

CVE-2020-24340

The CVE-2020-24340 issue affects picoTCP/picoTCP-NG (through 1.7.0) in the DNS response processing code path pico_mdns_handle_data_as_answers_generic() in pico_mdns.c, where it fails to validate that the header’s number of DNS answers matches the actual packet data. This can cause an out-of-bound...

Denial Of Service (DoS)

gpac is vulnerable to denial of serviceDoS. The vulnerability exists in the gflistcount in utils/list.c due to an invalid pointer dereference, allowing a malicious user to crash the application via a crafted MP4 file...

Security Bulletin: A vulnerability in SQLite affects IBM Cloud Application Performance Management Response Time Monitoring Agent (CVE-2019-19925, CVE-2019-19645, CVE-2019-19924, CVE-2019-19923, CVE-2019-19880, CVE-2019-19646, CVE-2019-19926)

Summary SQLite is vulnerable to a denial of service. Vulnerability Details CVEID: CVE-2019-19925 DESCRIPTION: SQLite is vulnerable to a denial of service, caused by the mishandling of a NULL pathname in the zipfileUpdate function in ext/misc/zipfile.c. By sending a specially-crafted request, a...

GPAC Invalid Pointer Dereference Vulnerability (CNVD-2020-19877)

GPAC is a multimedia framework for rich media and distributed under the LGPL license. An invalid pointer dereference vulnerability exists in gflistcount in utils/list.c in libgpac.a in versions of GPAC prior to 0.8.0. An attacker can exploit this vulnerability to cause a denial of service via a...

CVE-2019-20632

An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid pointer dereference in gfodfdeletedescriptor in odf/descprivate.c that can cause a denial of service via a crafted MP4 file...

CVE-2019-20632

An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid pointer dereference in gfodfdeletedescriptor in odf/descprivate.c that can cause a denial of service via a crafted MP4 file...

CVE-2019-20631

An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid pointer dereference in gflistcount in utils/list.c that can cause a denial of service via a crafted MP4 file...