CVE-2020-35982 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Low
Remote	Yes
Type	Denial of service
Description	An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function gf_hinter_track_finalize() in media_tools/isom_hinter.c.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-1823	gpac	1:1.0.1-1		Medium	Vulnerable

References
https://github.com/gpac/gpac/issues/1660 https://github.com/Clingto/POC/blob/master/gpac-MP4Box/gpac-c4f8bc6e_poc/gf_hinter_track_finalize-null-pointer https://github.com/gpac/gpac/commit/a4eb327049132359cae54b59faec9e2f14c5a619

References

https://github.com/gpac/gpac/issues/1660
https://github.com/Clingto/POC/blob/master/gpac-MP4Box/gpac-c4f8bc6e_poc/gf_hinter_track_finalize-null-pointer
https://github.com/gpac/gpac/commit/a4eb327049132359cae54b59faec9e2f14c5a619