CVE-2021-45292

Опубликовано: 21 дек. 2021

Источник: debian

EPSS Низкий

Описание

The gf_isom_hint_rtp_read function in GPAC 1.0.1 allows attackers to cause a denial of service (Invalid memory address dereference) via a crafted file in the MP4Box command.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gpac	fixed	2.0.0+dfsg1-2		package
gpac	end-of-life		buster	package
gpac	end-of-life		stretch	package

Примечания

https://github.com/gpac/gpac/issues/1958
https://github.com/gpac/gpac/commit/3dafcb5e71e9ffebb50238784dcad8b105da81f6 (v2.0.0)

EPSS

Процентиль: 29%

0.00104

Низкий

Связанные уязвимости

CVE-2021-45292

CVSS3: 5.5

ubuntu

около 4 лет назад

The gf_isom_hint_rtp_read function in GPAC 1.0.1 allows attackers to cause a denial of service (Invalid memory address dereference) via a crafted file in the MP4Box command.

CVE-2021-45292

CVSS3: 5.5

nvd

около 4 лет назад

The gf_isom_hint_rtp_read function in GPAC 1.0.1 allows attackers to cause a denial of service (Invalid memory address dereference) via a crafted file in the MP4Box command.

GHSA-67q6-ppfr-h59c

CVSS3: 5.5

github

около 4 лет назад

The gf_isom_hint_rtp_read function in GPAC 1.0.1 allows attackers to cause a denial of service (Invalid memory address dereference) via a crafted file in the MP4Box command.

EPSS

Процентиль: 29%

0.00104

Низкий