CVE-2021-40567

Опубликовано: 13 янв. 2022

Источник: debian

Описание

Segmentation fault vulnerability exists in Gpac through 1.0.1 via the gf_odf_size_descriptor function in desc_private.c when using mp4box, which causes a denial of service.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gpac	fixed	2.0.0+dfsg1-2		package
gpac	end-of-life		buster	package
gpac	end-of-life		stretch	package

Примечания

https://github.com/gpac/gpac/issues/1889
https://github.com/gpac/gpac/commit/f5a038e6893019ee471b6a57490cf7a495673816 (v2.0.0)

Связанные уязвимости

CVE-2021-40567

CVSS3: 5.5

ubuntu

около 4 лет назад

Segmentation fault vulnerability exists in Gpac through 1.0.1 via the gf_odf_size_descriptor function in desc_private.c when using mp4box, which causes a denial of service.

CVE-2021-40567

CVSS3: 5.5

nvd

около 4 лет назад

Segmentation fault vulnerability exists in Gpac through 1.0.1 via the gf_odf_size_descriptor function in desc_private.c when using mp4box, which causes a denial of service.

GHSA-pm8g-q89h-c5rp

CVSS3: 5.5

github

около 4 лет назад

Segmentation fault vulnerability exists in Gpac through 1.0.1 via the gf_odf_size_descriptor function in desc_private.c when using mp4box, which causes a denial of service.