Total
3485 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-32438 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| The gf_media_export_filters function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-32437 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| The gf_hinter_finalize function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-32440 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| The Media_RewriteODFrame function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-32275 | 1 Grame | 1 Faust | 2024-08-03 | 5.5 Medium |
| An issue was discovered in faust through v2.30.5. A NULL pointer dereference exists in the function CosPrim::computeSigOutput() located in cosprim.hh. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32135 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| The trak_box_size function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-32283 | 1 Creolabs | 1 Gravity | 2024-08-03 | 5.5 Medium |
| An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function gravity_string_to_value() located in gravity_value.c. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32282 | 1 Creolabs | 1 Gravity | 2024-08-03 | 5.5 Medium |
| An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function ircode_add_check() located in gravity_ircode.c. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32132 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| The abst_box_size function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-32134 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| The gf_odf_desc_copy function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-32284 | 1 Creolabs | 1 Gravity | 2024-08-03 | 7.8 High |
| An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function ircode_register_pop_context_protect() located in gravity_ircode.c. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32280 | 2 Debian, Xfig Project | 2 Debian Linux, Fig2dev | 2024-08-03 | 5.5 Medium |
| An issue was discovered in fig2dev before 3.2.8.. A NULL pointer dereference exists in the function compute_closed_spline() located in trans_spline.c. It allows an attacker to cause Denial of Service. The fixed version of fig2dev is 3.2.8. | ||||
| CVE-2021-32285 | 1 Creolabs | 1 Gravity | 2024-08-03 | 5.5 Medium |
| An issue was discovered in gravity through 0.8.1. A NULL pointer dereference exists in the function list_iterator_next() located in gravity_core.c. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32139 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| The gf_isom_vp_config_get function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-32138 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| The DumpTrackInfo function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | ||||
| CVE-2021-32276 | 2 Debian, Faad2 Project | 2 Debian Linux, Faad2 | 2024-08-03 | 5.5 Medium |
| An issue was discovered in faad2 through 2.10.0. A NULL pointer dereference exists in the function get_sample() located in output.c. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32269 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function ilst_item_box_dump located in box_dump.c. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32289 | 1 Nokia | 1 Heif | 2024-08-03 | 5.5 Medium |
| An issue was discovered in heif through through v3.6.2. A NULL pointer dereference exists in the function convertByteStreamToRBSP() located in nalutil.cpp. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-32270 | 1 Gpac | 1 Gpac | 2024-08-03 | 5.5 Medium |
| An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function vwid_box_del located in box_code_base.c. It allows an attacker to cause Denial of Service. | ||||
| CVE-2021-31826 | 1 Shibboleth | 1 Service Provider | 2024-08-03 | 7.5 High |
| Shibboleth Service Provider 3.x before 3.2.2 is prone to a NULL pointer dereference flaw involving the session recovery feature. The flaw is exploitable (for a daemon crash) on systems not using this feature if a crafted cookie is supplied. | ||||
| CVE-2021-31618 | 4 Apache, Debian, Fedoraproject and 1 more | 6 Http Server, Debian Linux, Fedora and 3 more | 2024-08-03 | 7.5 High |
| Apache HTTP Server protocol handler for the HTTP/2 protocol checks received request headers against the size limitations as configured for the server and used for the HTTP/1 protocol as well. On violation of these restrictions and HTTP response is sent to the client with a status code indicating why the request was rejected. This rejection response was not fully initialised in the HTTP/2 protocol handler if the offending header was the very first one received or appeared in a a footer. This led to a NULL pointer dereference on initialised memory, crashing reliably the child process. Since such a triggering HTTP/2 request is easy to craft and submit, this can be exploited to DoS the server. This issue affected mod_http2 1.15.17 and Apache HTTP Server version 2.4.47 only. Apache HTTP Server 2.4.47 was never released. | ||||