CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Gpac » Gpac » 0.8.0 * * * : Security Vulnerabilities

Cpe Name:cpe:2.3:a:gpac:gpac:0.8.0:*:*:*:*:*:*:*
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2020-35982 476 2021-04-21 2021-04-23
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function gf_hinter_track_finalize() in media_tools/isom_hinter.c.
2 CVE-2020-35981 476 2021-04-21 2021-04-23
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function SetupWriters() in isomedia/isom_store.c.
3 CVE-2020-35980 416 2021-04-21 2021-04-23
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is a use-after-free in the function gf_isom_box_del() in isomedia/box_funcs.c.
4 CVE-2020-35979 787 Overflow 2021-04-21 2021-04-23
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is heap-based buffer overflow in the function gp_rtp_builder_do_avc() in ietf/rtp_pck_mpeg4.c.
5 CVE-2020-25427 476 DoS 2022-01-10 2022-01-18
4.3
None Remote Medium Not required None None Partial
A Null pointer dereference vulnerability exits in MP4Box - GPAC version 0.8.0-rev177-g51a8ef874-master via the gf_isom_get_track_id function, which causes a denial of service.
6 CVE-2020-24829 787 DoS Overflow 2021-08-04 2021-08-11
4.3
None Remote Medium Not required None None Partial
An issue was discovered in GPAC v0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer overflow in gf_m2ts_section_complete in media_tools/mpegts.c that can cause a denial of service (DOS) via a crafted MP4 file.
7 CVE-2020-23269 787 DoS Overflow 2021-09-22 2021-10-02
4.3
None Remote Medium Not required None None Partial
An issue was discovered in gpac 0.8.0. The stbl_GetSampleSize function in isomedia/stbl_read.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted media file.
8 CVE-2020-23267 787 DoS Overflow 2021-09-22 2021-09-29
5.8
None Remote Medium Not required Partial None Partial
An issue was discovered in gpac 0.8.0. The gf_hinter_track_process function in isom_hinter_track_process.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted media file
9 CVE-2020-23266 787 DoS Overflow 2021-09-22 2021-09-29
4.3
None Remote Medium Not required None None Partial
An issue was discovered in gpac 0.8.0. The OD_ReadUTF8String function in odf_code.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted media file.
10 CVE-2020-22679 401 DoS 2021-10-12 2021-10-18
4.3
None Remote Medium Not required None None Partial
Memory leak in the sgpd_parse_entry function in MP4Box in gpac 0.8.0 allows attackers to cause a denial of service (DoS) via a crafted input.
11 CVE-2020-22678 787 DoS Overflow 2021-10-12 2021-10-18
4.3
None Remote Medium Not required None None Partial
An issue was discovered in gpac 0.8.0. The gf_media_nalu_remove_emulation_bytes function in av_parsers.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted input.
12 CVE-2020-22677 787 DoS Overflow 2021-10-12 2021-10-18
4.3
None Remote Medium Not required None None Partial
An issue was discovered in gpac 0.8.0. The dump_data_hex function in box_dump.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted input.
13 CVE-2020-22675 787 DoS Overflow 2021-10-12 2021-10-18
4.3
None Remote Medium Not required None None Partial
An issue was discovered in gpac 0.8.0. The GetGhostNum function in stbl_read.c has a heap-based buffer overflow which can lead to a denial of service (DOS) via a crafted input.
14 CVE-2020-22674 476 DoS 2021-10-12 2021-10-18
4.3
None Remote Medium Not required None None Partial
An issue was discovered in gpac 0.8.0. An invalid memory dereference exists in the function FixTrackID located in isom_intern.c, which allows attackers to cause a denial of service (DoS) via a crafted input.
15 CVE-2020-22673 401 DoS 2021-10-12 2021-10-18
4.3
None Remote Medium Not required None None Partial
Memory leak in the senc_Parse function in MP4Box in gpac 0.8.0 allows attackers to cause a denial of service (DoS) via a crafted input.
16 CVE-2020-22352 476 DoS 2021-08-04 2021-08-11
4.3
None Remote Medium Not required None None Partial
The gf_dash_segmenter_probe_input function in GPAC v0.8 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.
17 CVE-2020-19751 125 2021-09-07 2021-09-10
6.4
None Remote Low Not required Partial None Partial
An issue was discovered in gpac 0.8.0. The gf_odf_del_ipmp_tool function in odf_code.c has a heap-based buffer over-read.
18 CVE-2020-19750 125 2021-09-07 2021-09-10
5.0
None Remote Low Not required None None Partial
An issue was discovered in gpac 0.8.0. The strdup function in box_code_base.c has a heap-based buffer over-read.
19 CVE-2020-19488 476 DoS 2021-07-21 2021-07-31
4.3
None Remote Medium Not required None None Partial
An issue was discovered in box_code_apple.c:119 in Gpac MP4Box 0.8.0, allows attackers to cause a Denial of Service due to an invalid read on function ilst_item_Read.
20 CVE-2020-11558 416 2020-04-05 2020-04-06
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by MP4Box. audio_sample_entry_Read in isomedia/box_code_base.c does not properly decide when to make gf_isom_box_del calls. This leads to various use-after-free outcomes involving mdia_Read, gf_isom_delete_movie, and gf_isom_parse_movie_boxes.
21 CVE-2020-6631 476 2020-01-09 2020-01-14
4.3
None Remote Medium Not required None None Partial
An issue was discovered in GPAC version 0.8.0. There is a NULL pointer dereference in the function gf_m2ts_stream_process_pmt() in media_tools/m2ts_mux.c.
22 CVE-2020-6630 476 2020-01-09 2020-01-14
4.3
None Remote Medium Not required None None Partial
An issue was discovered in GPAC version 0.8.0. There is a NULL pointer dereference in the function gf_isom_get_media_data_size() in isomedia/isom_read.c.
23 CVE-2019-20208 787 Overflow 2020-01-02 2020-01-20
4.3
None Remote Medium Not required None None Partial
dimC_Read in isomedia/box_code_3gpp.c in GPAC 0.8.0 has a stack-based buffer overflow.
24 CVE-2019-20171 401 2019-12-31 2022-01-01
4.3
None Remote Medium Not required None None Partial
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There are memory leaks in metx_New in isomedia/box_code_base.c and abst_Read in isomedia/box_code_adobe.c.
25 CVE-2019-20170 763 2019-12-31 2020-01-20
4.3
None Remote Medium Not required None None Partial
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is an invalid pointer dereference in the function GF_IPMPX_AUTH_Delete() in odf/ipmpx_code.c.
26 CVE-2019-20169 416 2019-12-31 2020-01-02
4.3
None Remote Medium Not required None None Partial
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function trak_Read() in isomedia/box_code_base.c.
27 CVE-2019-20168 416 2019-12-31 2020-01-02
4.3
None Remote Medium Not required None None Partial
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function gf_isom_box_dump_ex() in isomedia/box_funcs.c.
28 CVE-2019-20167 476 2019-12-31 2020-01-02
4.3
None Remote Medium Not required None None Partial
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function senc_Parse() in isomedia/box_code_drm.c.
29 CVE-2019-20166 476 2019-12-31 2020-01-02
4.3
None Remote Medium Not required None None Partial
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function gf_isom_dump() in isomedia/box_dump.c.
30 CVE-2019-20165 476 2019-12-31 2020-01-20
4.3
None Remote Medium Not required None None Partial
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function ilst_item_Read() in isomedia/box_code_apple.c.
31 CVE-2019-20164 476 2019-12-31 2020-01-02
4.3
None Remote Medium Not required None None Partial
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function gf_isom_box_del() in isomedia/box_funcs.c.
32 CVE-2019-20163 476 2019-12-31 2020-01-20
4.3
None Remote Medium Not required None None Partial
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function gf_odf_avc_cfg_write_bs() in odf/descriptors.c.
33 CVE-2019-20162 787 Overflow 2019-12-31 2020-01-20
4.3
None Remote Medium Not required None None Partial
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is heap-based buffer overflow in the function gf_isom_box_parse_ex() in isomedia/box_funcs.c.
34 CVE-2019-20161 787 Overflow 2019-12-31 2020-01-20
4.3
None Remote Medium Not required None None Partial
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is heap-based buffer overflow in the function ReadGF_IPMPX_WatermarkingInit() in odf/ipmpx_code.c.
35 CVE-2019-20160 787 Overflow 2019-12-31 2020-01-02
4.3
None Remote Medium Not required None None Partial
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a stack-based buffer overflow in the function av1_parse_tile_group() in media_tools/av_parsers.c.
36 CVE-2019-20159 772 2019-12-31 2021-07-21
4.3
None Remote Medium Not required None None Partial
An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a memory leak in dinf_New() in isomedia/box_code_base.c.
Total number of vulnerabilities : 36   Page : 1 (This Page)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.