17 matches found
CVE-2023-48014
GPAC v2.3-DEV-rev566-g50c2ab06f-master was discovered to contain a stack overflow via the hevcparsevpsextension function at /mediatools/avparsers.c...
Buffer Overflow
GPAC is vulnerable to Buffer Overflow. The vulnerability is due to the gfhevcreadspsbsinternal function of mediatools/avparsers.c which allows an attacker to cause an application crash...
Buffer Overflow
GPAC is vulnerable to Buffer Overflow. The vulnerability is due to the gfvvcreadppsbsinternal function of mediatools/avparsers.c which allows an attacker to cause an application crash...
CVE-2023-1449 GPAC av_parsers.c gf_av1_reset_state double free
A vulnerability has been found in GPAC 2.3-DEV-rev35-gbbca86917-master and classified as problematic. This vulnerability affects the function gfav1resetstate of the file mediatools/avparsers.c. The manipulation leads to double free. It is possible to launch the attack on the local host. The explo...
CVE-2023-23143
GPAC multimedia framework (GPAC 2.3-DEV-rev1-g4669ba229-master) contains a buffer overflow in avc_parse_slice() inside media_tools/av_parsers.c. The CVE-2023-23143 issue has high impact (local access, requires user interaction per NVD) and may allow denial of service or arbitrary code execution. ...
CVE-2022-47658
GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to buffer overflow in function gfhevcreadvpsbsinternal of mediatools/avparsers.c:8039...
CVE-2022-47656
GPAC MP4box 2.1-DEV-rev617-g85ce76efd is vulnerable to Buffer Overflow in gfhevcreadspsbsinternal function of mediatools/avparsers.c:8273...
CVE-2022-47656
GPAC MP4box 2.1-DEV-rev617-g85ce76efd is vulnerable to Buffer Overflow in gfhevcreadspsbsinternal function of mediatools/avparsers.c:8273...
Buffer overflow
GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to buffer overflow in function gfhevcreadvpsbsinternal of mediatools/avparsers.c:8039...
CVE-2022-47661
GPAC MP4Box 2.1-DEV-rev649-ga8f438d20 is vulnerable to Buffer Overflow via mediatools/avparsers.c:4988 in gfmedianaluaddemulationbytes...
CVE-2022-47657
GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to buffer overflow in function hevcparsevpsextension of mediatools/avparsers.c:7662...
CVE-2022-47089
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer Overflow via gfvvcreadspsbsinternal function of mediatools/avparsers.c...
CVE-2022-47095
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer overflow in hevcparsevpsextension function of mediatools/avparsers.c...
CVE-2022-47653
GPAC MP4box 2.1-DEV-rev593-g007bf61a0 is vulnerable to Buffer Overflow in eac3updatechannels function of mediatools/avparsers.c:9113...
CVE-2022-47095
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer overflow in hevcparsevpsextension function of mediatools/avparsers.c...
CVE-2022-47657
GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to buffer overflow in function hevcparsevpsextension of mediatools/avparsers.c:7662...
Design/Logic Flaw
In the function gfhevcreadppsbsinternal function in mediatools/avparsers.c in GPAC 1.0.1 there is a loop, which with crafted file, pps-numtilecolumns may be larger than sizeofpps-columnwidth, which results in a heap overflow in the loop...