Lucene search
Veracode Vulnerability DatabaseVERACODE:40704HistoryMay 26, 2023 - 9:17 a.m.
Denial Of Service (DoS)
2023-05-2609:17:04
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
libgpac denial of service buffer overflow application crash vulnerability+xml_sax_parse+xml_sax_parse_intern
0.0005 Low
EPSS
Percentile
18.9%
libgpac.so is vulnerable to Denial of Service (DoS) attacks. The vulnerability exists in the xml_sax_parse function which is recursively called with the gf_xml_sax_parse_intern function, exhausting stack space, resulting in Stack-based Buffer Overflow, causing an application crash.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libgpac.so | le | 10.1.0 | |
| libgpac.so | le | 10.1.0 | |
| gpac:bullseye | eq | 0.7.1+dfsg1-4 |
Related
ubuntucve
ubuntucve
CVE-2023-2837
2023-05-22 00:00:00
debiancve
debiancve
CVE-2023-2837
2023-05-22 18:15:09
cve
cve
CVE-2023-2837
2023-05-22 18:15:09
osv
osv
CVE-2023-2837
2023-05-22 18:15:09
gpac - security update
2023-05-26 00:00:00
cvelist
cvelist
CVE-2023-2837 Stack-based Buffer Overflow in gpac/gpac
2023-05-22 00:00:00
huntr
huntr
Stack-overflow in function xml_sax_parse at src/utils/xml_parser.c
2023-05-17 13:13:57
prion
prion
Stack overflow
2023-05-22 18:15:00
nvd
nvd
CVE-2023-2837
2023-05-22 18:15:09
redos
redos
ROS-20230621-03
2023-06-21 00:00:00
debian
debian
[SECURITY] [DSA 5411-1] gpac security update
2023-05-26 14:00:08
nessus
nessus
Debian DSA-5411-1 : gpac - security update
2023-05-27 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5411-1)
2023-05-29 00:00:00