CVE-2019-12483

Опубликовано: 30 мая 2019

Источник: debian

EPSS Низкий

Описание

An issue was discovered in GPAC 0.7.1. There is a heap-based buffer overflow in the function ReadGF_IPMPX_RemoveToolNotificationListener in odf/ipmpx_code.c in libgpac.a, as demonstrated by MP4Box.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gpac	fixed	1.0.1+dfsg1-2		package
gpac	no-dsa		buster	package
gpac	no-dsa		stretch	package
ccextractor	fixed	0.93+ds2-1		package
ccextractor	no-dsa		bullseye	package
ccextractor	no-dsa		buster	package

Примечания

https://github.com/gpac/gpac/issues/1249
https://github.com/gpac/gpac/commit/f40aaaf959d4d1f7fa0dcd04c0666592e615c8f1

EPSS

Процентиль: 49%

0.00263

Низкий

Связанные уязвимости

CVE-2019-12483

CVSS3: 7.8

ubuntu

больше 6 лет назад

An issue was discovered in GPAC 0.7.1. There is a heap-based buffer overflow in the function ReadGF_IPMPX_RemoveToolNotificationListener in odf/ipmpx_code.c in libgpac.a, as demonstrated by MP4Box.

CVE-2019-12483

CVSS3: 7.8

nvd

больше 6 лет назад

An issue was discovered in GPAC 0.7.1. There is a heap-based buffer overflow in the function ReadGF_IPMPX_RemoveToolNotificationListener in odf/ipmpx_code.c in libgpac.a, as demonstrated by MP4Box.

GHSA-m2w7-3369-7579

CVSS3: 7.8

github

больше 3 лет назад

An issue was discovered in GPAC 0.7.1. There is a heap-based buffer overflow in the function ReadGF_IPMPX_RemoveToolNotificationListener in odf/ipmpx_code.c in libgpac.a, as demonstrated by MP4Box.

EPSS

Процентиль: 49%

0.00263

Низкий