CVE-2021-45267

Опубликовано: 22 дек. 2021

Источник: debian

EPSS Низкий

Описание

An invalid memory address dereference vulnerability exists in gpac 1.1.0 via the svg_node_start function, which causes a segmentation fault and application crash.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gpac	fixed	2.0.0+dfsg1-2		package
gpac	end-of-life		buster	package
gpac	end-of-life		stretch	package

Примечания

https://github.com/gpac/gpac/issues/1965
https://github.com/gpac/gpac/commit/29f31f431b18278b94c659452562e8a027436487 (v2.0.0)

EPSS

Процентиль: 34%

0.00136

Низкий

Связанные уязвимости

CVE-2021-45267

CVSS3: 5.5

ubuntu

около 4 лет назад

An invalid memory address dereference vulnerability exists in gpac 1.1.0 via the svg_node_start function, which causes a segmentation fault and application crash.

CVE-2021-45267

CVSS3: 5.5

nvd

около 4 лет назад

An invalid memory address dereference vulnerability exists in gpac 1.1.0 via the svg_node_start function, which causes a segmentation fault and application crash.

GHSA-m2p2-7mfv-gh5x

CVSS3: 5.5

github

около 4 лет назад

An invalid memory address dereference vulnerability exists in gpac 1.1.0 via the svg_node_start function, which causes a segmentation fault and application crash.

EPSS

Процентиль: 34%

0.00136

Низкий