Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2019-20628

Опубликовано: 24 мар. 2020
Источник: debian
EPSS Низкий

Описание

An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a Use-After-Free vulnerability in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
gpacfixed1.0.1+dfsg1-2package
gpacno-dsabusterpackage
gpacno-dsastretchpackage
gpacignoredjessiepackage

Примечания

  • https://github.com/gpac/gpac/commit/1ab4860609f2e7a35634930571e7d0531297e090

  • https://github.com/gpac/gpac/commit/98b727637e32d1d4824101d8947e2dbd573d4fc8

  • https://github.com/gpac/gpac/issues/1269

EPSS

Процентиль: 59%
0.00378
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2019-20628

CVSS3: 5.5
ubuntu
почти 6 лет назад

An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a Use-After-Free vulnerability in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file.

nvd логотип

CVE-2019-20628

CVSS3: 5.5
nvd
почти 6 лет назад

An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a Use-After-Free vulnerability in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file.

github логотип

GHSA-6gh5-mh8q-f627

github
больше 3 лет назад

An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a Use-After-Free vulnerability in gf_m2ts_process_pmt in media_tools/mpegts.c that can cause a denial of service via a crafted MP4 file.

EPSS

Процентиль: 59%
0.00378
Низкий