---

CVE-2020-35979 - log back

CVE-2020-35979 edited at 21 Apr 2021 15:59:41
Severity	- Unknown + Medium
Remote	- Unknown + Remote
Type	- Unknown + Arbitrary code execution
Description	+ An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is heap-based buffer overflow in the function gp_rtp_builder_do_avc() in ietf/rtp_pck_mpeg4.c.
References	+ https://github.com/gpac/gpac/issues/1662 + https://github.com/Clingto/POC/blob/master/gpac-MP4Box/gpac-c4f8bc6e_poc/gp_rtp_builder_do_avc-hepo + https://github.com/gpac/gpac/commit/b15020f54aff24aaeb64b80771472be8e64a7adc

CVE-2020-35979 created at 21 Apr 2021 15:58:12
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes