Log

CVE-2020-23931 edited at 21 Apr 2021 19:28:54
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Information disclosure
Description
+ An issue was discovered in gpac before 1.0.1. The abst_box_read function in box_code_adobe.c has a heap-based buffer over-read.
References
+ https://github.com/gpac/gpac/issues/1564
+ https://github.com/gpac/gpac/issues/1567
+ https://github.com/gpac/gpac/commit/093283e727f396130651280609e687cd4778e0d1
CVE-2020-23930 edited at 21 Apr 2021 19:27:54
Severity
- Unknown
+ Low
Remote
- Unknown
+ Remote
Type
- Unknown
+ Denial of service
Description
+ An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function nhmldump_send_header located in write_nhml.c. It allows an attacker to cause denial of service.
References
+ https://github.com/gpac/gpac/issues/1565
+ https://github.com/gpac/gpac/commit/9eeac00b38348c664dfeae2525bba0cf1bc32349
CVE-2020-23928 edited at 21 Apr 2021 19:26:42
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Information disclosure
Description
+ An issue was discovered in gpac before 1.0.1. The abst_box_read function in box_code_adobe.c has a heap-based buffer over-read.
References
+ https://github.com/gpac/gpac/issues/1568
+ https://github.com/gpac/gpac/issues/1569
+ https://github.com/gpac/gpac/commit/8e05648d6b4459facbc783025c5c42d301fef5c3
AVG-1823 edited at 21 Apr 2021 19:25:37
Issues
+ CVE-2020-23928
+ CVE-2020-23930
+ CVE-2020-23931
+ CVE-2020-23932
CVE-2020-35979
CVE-2020-35980
CVE-2020-35981
CVE-2020-35982
CVE-2021-28300
CVE-2021-30014
CVE-2021-30015
CVE-2021-30019
CVE-2021-30020
CVE-2021-30022
CVE-2021-30199
CVE-2021-31254
CVE-2021-31255
CVE-2021-31256
CVE-2021-31257
CVE-2021-31258
CVE-2021-31259
CVE-2021-31260
CVE-2021-31261
CVE-2021-31262
CVE-2020-23931 created at 21 Apr 2021 19:25:37
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes
AVG-1823 edited at 21 Apr 2021 19:25:37
Issues
+ CVE-2020-23928
+ CVE-2020-23930
+ CVE-2020-23931
+ CVE-2020-23932
CVE-2020-35979
CVE-2020-35980
CVE-2020-35981
CVE-2020-35982
CVE-2021-28300
CVE-2021-30014
CVE-2021-30015
CVE-2021-30019
CVE-2021-30020
CVE-2021-30022
CVE-2021-30199
CVE-2021-31254
CVE-2021-31255
CVE-2021-31256
CVE-2021-31257
CVE-2021-31258
CVE-2021-31259
CVE-2021-31260
CVE-2021-31261
CVE-2021-31262
CVE-2020-23932 created at 21 Apr 2021 19:25:37
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes
AVG-1823 edited at 21 Apr 2021 19:25:37
Issues
+ CVE-2020-23928
+ CVE-2020-23930
+ CVE-2020-23931
+ CVE-2020-23932
CVE-2020-35979
CVE-2020-35980
CVE-2020-35981
CVE-2020-35982
CVE-2021-28300
CVE-2021-30014
CVE-2021-30015
CVE-2021-30019
CVE-2021-30020
CVE-2021-30022
CVE-2021-30199
CVE-2021-31254
CVE-2021-31255
CVE-2021-31256
CVE-2021-31257
CVE-2021-31258
CVE-2021-31259
CVE-2021-31260
CVE-2021-31261
CVE-2021-31262
CVE-2020-23930 created at 21 Apr 2021 19:25:37
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes
AVG-1823 edited at 21 Apr 2021 19:25:37
Issues
+ CVE-2020-23928
+ CVE-2020-23930
+ CVE-2020-23931
+ CVE-2020-23932
CVE-2020-35979
CVE-2020-35980
CVE-2020-35981
CVE-2020-35982
CVE-2021-28300
CVE-2021-30014
CVE-2021-30015
CVE-2021-30019
CVE-2021-30020
CVE-2021-30022
CVE-2021-30199
CVE-2021-31254
CVE-2021-31255
CVE-2021-31256
CVE-2021-31257
CVE-2021-31258
CVE-2021-31259
CVE-2021-31260
CVE-2021-31261
CVE-2021-31262
CVE-2020-23928 created at 21 Apr 2021 19:25:37
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes
AVG-1855 edited at 21 Apr 2021 19:24:27
Severity
- Unknown
+ Medium
CVE-2020-23922 edited at 21 Apr 2021 19:24:27
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Information disclosure
Description
+ An issue was discovered in giflib. DumpScreen2RGB in gif2rgb.c has a heap-based buffer over-read.
References
+ https://sourceforge.net/p/giflib/bugs/151/
+ https://sourceforge.net/p/giflib/bugs/151/attachment/heap-buffer-overflow-DumpScreen2RGB-gif2rgb-294.zip
Notes
AVG-1855 created at 21 Apr 2021 19:23:33
Packages
+ giflib
Issues
+ CVE-2020-23922
Status
+ Vulnerable
Severity
+ Unknown
Affected
+ 5.2.1-2
Fixed
Ticket
Advisory qualified
+ Yes
References
Notes
CVE-2020-23922 created at 21 Apr 2021 19:23:33
AVG-1854 edited at 21 Apr 2021 16:52:08
Status
- Testing
+ Fixed