gpac

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description A multimedia framework based on the MPEG-4 Systems standard
Version 1:1.0.1-1 [community]

Open

Group Affected Fixed Severity Status Ticket
AVG-1823 1:1.0.1-1 Medium Vulnerable
Issue Group Severity Remote Type Description
CVE-2021-31262 AVG-1823 Low Yes Denial of service
The AV1_DuplicateConfig function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
CVE-2021-31261 AVG-1823 Medium Yes Information disclosure
The gf_hinter_track_new function in GPAC 1.0.1 allows attackers to read memory via a crafted file in the MP4Box command.
CVE-2021-31260 AVG-1823 Low Yes Denial of service
The MergeTrack function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
CVE-2021-31259 AVG-1823 Low Yes Denial of service
The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted...
CVE-2021-31258 AVG-1823 Low Yes Denial of service
The gf_isom_set_extraction_slc function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the...
CVE-2021-31257 AVG-1823 Low Yes Denial of service
The HintFile function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
CVE-2021-31256 AVG-1823 Medium Yes Information disclosure
A memory leak in the stbl_GetSampleInfos function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file.
CVE-2021-31255 AVG-1823 Medium Yes Arbitrary code execution
A buffer overflow in the abst_box_read function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file.
CVE-2021-31254 AVG-1823 Medium Yes Arbitrary code execution
A buffer overflow in the tenc_box_read function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a...
CVE-2021-30199 AVG-1823 Low Yes Denial of service
In filters/reframe_latm.c in GPAC 1.0.1 there is a null pointer dereference when gf_filter_pck_get_data is called. The first arg pck may be null with a...
CVE-2021-30022 AVG-1823 Low Yes Denial of service
There is an integer overflow in media_tools/av_parsers.c in the gf_avc_read_pps_bs_internal in GPAC 1.0.1. pps_id may be a negative number, so it will not...
CVE-2021-30020 AVG-1823 Medium Yes Arbitrary code execution
In the function gf_hevc_read_pps_bs_internal function in media_tools/av_parsers.c in GPAC 1.0.1 there is a loop, which with crafted file,...
CVE-2021-30019 AVG-1823 Medium Yes Arbitrary code execution
In the adts_dmx_process function in filters/reframe_adts.c in GPAC 1.0.1, a crafted file may cause ctx->hdr.frame_size to be smaller than ctx->hdr.hdr_size,...
CVE-2021-30015 AVG-1823 Low Yes Denial of service
There is a null pointer dereference in function filter_core/filter_pck.c:gf_filter_pck_new_alloc_internal in GPAC 1.0.1. The pid comes from function...
CVE-2021-30014 AVG-1823 Low Yes Denial of service
There is an integer overflow in media_tools/av_parsers.c in the hevc_parse_slice_segment function in GPAC 1.0.1 which results in a crash.
CVE-2021-29279 AVG-1823 Medium Yes Arbitrary code execution
There is a integer overflow in function filter_core/filter_props.c:gf_props_assign_value in GPAC 1.0.1. value->value.data.size can be a negative number, in...
CVE-2021-28300 AVG-1823 Medium Yes Arbitrary code execution
A null pointer dereference in the "isomedia/track.c" module's "MergeTrack()" function of GPAC v0.5.2 allows attackers to execute arbitrary code or cause a...
CVE-2020-35982 AVG-1823 Low Yes Denial of service
An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function gf_hinter_track_finalize() in...
CVE-2020-35981 AVG-1823 Low Yes Denial of service
An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function SetupWriters() in isomedia/isom_store.c.
CVE-2020-35980 AVG-1823 Medium Yes Arbitrary code execution
An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is a use-after-free in the function gf_isom_box_del() in isomedia/box_funcs.c.
CVE-2020-35979 AVG-1823 Medium Yes Arbitrary code execution
An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is heap-based buffer overflow in the function gp_rtp_builder_do_avc() in ietf/rtp_pck_mpeg4.c.

Resolved

Group Affected Fixed Severity Status Ticket
AVG-1856 1:1.0.0-1 1:1.0.1-1 Medium Fixed
Issue Group Severity Remote Type Description
CVE-2020-23932 AVG-1856 Low Yes Denial of service
An issue was discovered in gpac before 1.0.1. A NULL pointer dereference exists in the function dump_isom_sdp located in filedump.c. It allows an attacker...
CVE-2020-23931 AVG-1856 Medium No Information disclosure
An issue was discovered in gpac before 1.0.1. The abst_box_read function in box_code_adobe.c has a heap-based buffer over-read.
CVE-2020-23930 AVG-1856 Low Yes Denial of service
An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function nhmldump_send_header located in write_nhml.c. It allows...
CVE-2020-23928 AVG-1856 Medium Yes Information disclosure
An issue was discovered in gpac before 1.0.1. The abst_box_read function in box_code_adobe.c has a heap-based buffer over-read.