gpac:sid is vulnerable to denial of service. The function gf_hevc_read_pps_bs_internal
function in media_tools/av_parsers.c
causes a loop when a malicious file, pps->num_tile_columns
larger than sizeof(pps->column_width)
results in a heap overflow in the loop.
CPE | Name | Operator | Version |
---|---|---|---|
gpac:sid | eq | 1.0.1+dfsg1-3 | |
gpac:bullseye | eq | 0.7.1+dfsg1-4 | |
gpac:sid | eq | 1.0.1+dfsg1-3 | |
gpac:bullseye | eq | 0.7.1+dfsg1-4 |