Filtered by vendor Gpac
Subscriptions
Total
341 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-32139 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| The gf_isom_vp_config_get function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-32138 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| The DumpTrackInfo function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-32269 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function ilst_item_box_dump located in box_dump.c. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32270 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function vwid_box_del located in box_code_base.c. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32137 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| Heap buffer overflow in the URL_GetProtocolType function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file. | ||||
| CVE-2021-31254 | 1 Gpac | 1 Gpac | 2024-08-03 | 7.8 High |
| Buffer overflow in the tenc_box_read function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file, related invalid IV sizes. | ||||
| CVE-2021-31258 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| The gf_isom_set_extraction_slc function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-31256 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| Memory leak in the stbl_GetSampleInfos function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file. | ||||
| CVE-2021-31262 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| The AV1_DuplicateConfig function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-31260 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| The MergeTrack function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-31255 | 1 Gpac | 1 Gpac | 2024-08-03 | 7.8 High |
| Buffer overflow in the abst_box_read function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file. | ||||
| CVE-2021-31257 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| The HintFile function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-31259 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-31261 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| The gf_hinter_track_new function in GPAC 1.0.1 allows attackers to read memory via a crafted file in the MP4Box command. | ||||
| CVE-2021-30199 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| In filters/reframe_latm.c in GPAC 1.0.1 there is a Null Pointer Dereference, when gf_filter_pck_get_data is called. The first arg pck may be null with a crafted mp4 file,which results in a crash. | ||||
| CVE-2021-30014 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| There is a integer overflow in media_tools/av_parsers.c in the hevc_parse_slice_segment function in GPAC 1.0.1 which results in a crash. | ||||
| CVE-2021-30015 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| There is a Null Pointer Dereference in function filter_core/filter_pck.c:gf_filter_pck_new_alloc_internal in GPAC 1.0.1. The pid comes from function av1dmx_parse_flush_sample, the ctx.opid maybe NULL. The result is a crash in gf_filter_pck_new_alloc_internal. | ||||
| CVE-2021-30019 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| In the adts_dmx_process function in filters/reframe_adts.c in GPAC 1.0.1, a crafted file may cause ctx->hdr.frame_size to be smaller than ctx->hdr.hdr_size, resulting in size to be a negative number and a heap overflow in the memcpy. | ||||
| CVE-2021-30022 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| There is a integer overflow in media_tools/av_parsers.c in the gf_avc_read_pps_bs_internal in GPAC 1.0.1. pps_id may be a negative number, so it will not return. However, avc->pps only has 255 unit, so there is an overflow, which results a crash. | ||||
| CVE-2021-30020 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| In the function gf_hevc_read_pps_bs_internal function in media_tools/av_parsers.c in GPAC 1.0.1 there is a loop, which with crafted file, pps->num_tile_columns may be larger than sizeof(pps->column_width), which results in a heap overflow in the loop. | ||||