CVE-2021-45260

Опубликовано: 22 дек. 2021

Источник: debian

Описание

A null pointer dereference vulnerability exists in gpac 1.1.0 in the lsr_read_id.part function, which causes a segmentation fault and application crash.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gpac	fixed	2.0.0+dfsg1-2		package
gpac	ignored		bullseye	package
gpac	ignored		buster	package
gpac	end-of-life		stretch	package

Примечания

https://github.com/gpac/gpac/issues/1979
https://github.com/gpac/gpac/issues/1977
https://github.com/gpac/gpac/commit/5e5e9c48b1a61e3844e9fbe26292305ab4c06d04 (v2.0.0)
Reported twice upstream, fix is in issue 1977 - identical report in issue 1979

Связанные уязвимости

CVE-2021-45260

CVSS3: 5.5

ubuntu

около 4 лет назад

A null pointer dereference vulnerability exists in gpac 1.1.0 in the lsr_read_id.part function, which causes a segmentation fault and application crash.

CVE-2021-45260

CVSS3: 5.5

nvd

около 4 лет назад

A null pointer dereference vulnerability exists in gpac 1.1.0 in the lsr_read_id.part function, which causes a segmentation fault and application crash.

GHSA-f48p-3p22-3chg

github

около 4 лет назад

A null pointer dereference vulnerability exists in gpac 1.1.0 in the lsr_read_id.part function, which causes a segmentation fault and application crash.