CVE-2019-20168

Опубликовано: 31 дек. 2019

Источник: debian

EPSS Низкий

Описание

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function gf_isom_box_dump_ex() in isomedia/box_funcs.c.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gpac	not-affected			package

Примечания

https://github.com/gpac/gpac/issues/1333
Introduces use_dump_mode: https://github.com/gpac/gpac/commit/9ea1fb39891669014a6e7592a4422e8de630cdc0 (v0.7.0)
Uncovers/makes visible the vulnerability: https://github.com/gpac/gpac/commit/697d6afb3cd012d442e12400b6841ebd1256a354 (v0.8.0)
https://github.com/gpac/gpac/commit/a8b6246da925cf744805c9427a01fcacb53314bb

EPSS

Процентиль: 52%

0.00286

Низкий

Связанные уязвимости

CVE-2019-20168

CVSS3: 5.5

ubuntu

около 6 лет назад

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function gf_isom_box_dump_ex() in isomedia/box_funcs.c.

CVE-2019-20168

CVSS3: 5.5

nvd

около 6 лет назад

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function gf_isom_box_dump_ex() in isomedia/box_funcs.c.

GHSA-x9c5-mv9c-j6pj

github

больше 3 лет назад

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function gf_isom_box_dump_ex() in isomedia/box_funcs.c.

EPSS

Процентиль: 52%

0.00286

Низкий