Lucene search
Veracode Vulnerability DatabaseVERACODE:38293HistoryNov 30, 2022 - 3:16 a.m.
Denial Of Service (DoS)
2022-11-3003:16:52
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
denial of service
integer overflow
application crash
libgpac.so
0.004 Low
EPSS
Percentile
72.4%
libgpac.so is vulnerable to denial of service. The vulnerability exists due to the integer overflow in the lsr_translate_coords function of lsr_dec.c, allowing an attacker to cause an application crash by providing a maliciously crafted input.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libgpac.so | le | 10.1.0 | |
| libgpac.so | le | 10.1.0 | |
| gpac:bullseye | eq | 0.7.1+dfsg1-4 |
References
drive.google.com/file/d/1HVWa6IpAbvsMS5rx091RfjUB4GfXrMLE/view
github.com/advisories/GHSA-9c76-9w8w-mhgx
github.com/gpac/gpac/commit/b3d821c4ae9ba62b3a194d9dcb5e99f17bd56908
github.com/gpac/gpac/commit/faa75edde3dfeba1e2cf6ffa48e45a50f1042096
github.com/gpac/gpac/issues/2213
github.com/gpac/gpac/issues/2333
vuldb.com/?id.214518
www.debian.org/security/2023/dsa-5411
Related
cvelist
cvelist
CVE-2022-4202 GPAC lsr_dec.c lsr_translate_coords integer overflow
2022-11-29 00:00:00
osv
osv
CVE-2022-4202
2022-11-29 09:15:09
gpac - security update
2023-05-26 00:00:00
debiancve
debiancve
CVE-2022-4202
2022-11-29 09:15:09
ubuntucve
ubuntucve
CVE-2022-4202
2022-11-29 00:00:00
prion
prion
Integer overflow
2022-11-29 09:15:00
cve
cve
CVE-2022-4202
2022-11-29 09:15:09
nvd
nvd
CVE-2022-4202
2022-11-29 09:15:09
nessus
nessus
Debian DSA-5411-1 : gpac - security update
2023-05-27 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5411-1)
2023-05-29 00:00:00
debian
debian
[SECURITY] [DSA 5411-1] gpac security update
2023-05-26 14:00:08