Filtered by vendor Gpac
Subscriptions
Total
349 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-24266 | 1 Gpac | 1 Gpac | 2025-06-05 | 7.5 High |
| gpac v2.2.1 was discovered to contain a Use-After-Free (UAF) vulnerability via the dasher_configure_pid function at /src/filters/dasher.c. | ||||
| CVE-2024-0322 | 1 Gpac | 1 Gpac | 2025-06-03 | 9.1 Critical |
| Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.3-DEV. | ||||
| CVE-2023-46932 | 1 Gpac | 1 Gpac | 2025-05-27 | 9.8 Critical |
| Heap Buffer Overflow vulnerability in GPAC version 2.3-DEV-rev617-g671976fcc-master, allows attackers to execute arbitrary code and cause a denial of service (DoS) via str2ulong class in src/media_tools/avilib.c in gpac/MP4Box. | ||||
| CVE-2024-0321 | 1 Gpac | 1 Gpac | 2025-05-16 | 9.8 Critical |
| Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3-DEV. | ||||
| CVE-2024-24265 | 1 Gpac | 1 Gpac | 2025-05-09 | 7.5 High |
| gpac v2.2.1 was discovered to contain a memory leak via the dst_props variable in the gf_filter_pid_merge_properties_internal function. | ||||
| CVE-2022-43045 | 1 Gpac | 1 Gpac | 2025-05-09 | 5.5 Medium |
| GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function gf_dump_vrml_sffield at /scene_manager/scene_dump.c. | ||||
| CVE-2022-43044 | 1 Gpac | 1 Gpac | 2025-05-09 | 5.5 Medium |
| GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function gf_isom_get_meta_item_info at /isomedia/meta.c. | ||||
| CVE-2022-43043 | 1 Gpac | 1 Gpac | 2025-05-09 | 5.5 Medium |
| GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function BD_CheckSFTimeOffset at /bifs/field_decode.c. | ||||
| CVE-2022-43042 | 1 Gpac | 1 Gpac | 2025-05-09 | 7.8 High |
| GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a heap buffer overflow via the function FixSDTPInTRAF at isomedia/isom_intern.c. | ||||
| CVE-2022-43040 | 1 Gpac | 1 Gpac | 2025-05-09 | 7.8 High |
| GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a heap buffer overflow via the function gf_isom_box_dump_start_ex at /isomedia/box_funcs.c. | ||||
| CVE-2022-43039 | 1 Gpac | 1 Gpac | 2025-05-08 | 5.5 Medium |
| GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function gf_isom_meta_restore_items_ref at /isomedia/meta.c. | ||||
| CVE-2022-43255 | 1 Gpac | 1 Gpac | 2025-05-02 | 5.5 Medium |
| GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a memory leak via the component gf_odf_new_iod at odf/odf_code.c. | ||||
| CVE-2022-43254 | 1 Gpac | 1 Gpac | 2025-05-02 | 5.5 Medium |
| GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a memory leak via the component gf_list_new at utils/list.c. | ||||
| CVE-2022-45343 | 1 Gpac | 1 Gpac | 2025-05-02 | 7.8 High |
| GPAC v2.1-DEV-rev478-g696e6f868-master was discovered to contain a heap use-after-free via the Q_IsTypeOn function at /gpac/src/bifs/unquantize.c. | ||||
| CVE-2022-45204 | 1 Gpac | 1 Gpac | 2025-04-25 | 5.5 Medium |
| GPAC v2.1-DEV-rev428-gcb8ae46c8-master was discovered to contain a memory leak via the function dimC_box_read at isomedia/box_code_3gpp.c. | ||||
| CVE-2022-45202 | 1 Gpac | 1 Gpac | 2025-04-25 | 7.8 High |
| GPAC v2.1-DEV-rev428-gcb8ae46c8-master was discovered to contain a stack overflow via the function dimC_box_read at isomedia/box_code_3gpp.c. | ||||
| CVE-2022-45283 | 1 Gpac | 1 Gpac | 2025-04-24 | 7.8 High |
| GPAC MP4box v2.0.0 was discovered to contain a stack overflow in the smil_parse_time_list parameter at /scenegraph/svg_attributes.c. | ||||
| CVE-2022-3957 | 1 Gpac | 1 Gpac | 2025-04-15 | 4.3 Medium |
| A vulnerability classified as problematic was found in GPAC. Affected by this vulnerability is the function svg_parse_preserveaspectratio of the file scenegraph/svg_attributes.c of the component SVG Parser. The manipulation leads to memory leak. The attack can be launched remotely. The name of the patch is 2191e66aa7df750e8ef01781b1930bea87b713bb. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-213463. | ||||
| CVE-2022-4202 | 1 Gpac | 1 Gpac | 2025-04-15 | 6.3 Medium |
| A vulnerability, which was classified as problematic, was found in GPAC 2.1-DEV-rev490-g68064e101-master. Affected is the function lsr_translate_coords of the file laser/lsr_dec.c. The manipulation leads to integer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The name of the patch is b3d821c4ae9ba62b3a194d9dcb5e99f17bd56908. It is recommended to apply a patch to fix this issue. VDB-214518 is the identifier assigned to this vulnerability. | ||||
| CVE-2022-47663 | 1 Gpac | 1 Gpac | 2025-04-10 | 7.8 High |
| GPAC MP4box 2.1-DEV-rev649-ga8f438d20 is vulnerable to buffer overflow in h263dmx_process filters/reframe_h263.c:609 | ||||