CVE-2022-24249

Опубликовано: 04 фев. 2022

Источник: debian

Описание

A Null Pointer Dereference vulnerability exists in GPAC 1.1.0 via the xtra_box_write function in /box_code_base.c, which causes a Denial of Service. This vulnerability was fixed in commit 71f9871.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gpac	fixed	2.0.0+dfsg1-2		package
gpac	not-affected		bullseye	package
gpac	not-affected		buster	package
gpac	end-of-life		stretch	package

Примечания

https://github.com/gpac/gpac/issues/2081
https://github.com/gpac/gpac/commit/71f9871fc210e60df041b58c84572782b4849de9 (v2.0.0)

Связанные уязвимости

CVE-2022-24249

CVSS3: 5.5

ubuntu

около 4 лет назад

A Null Pointer Dereference vulnerability exists in GPAC 1.1.0 via the xtra_box_write function in /box_code_base.c, which causes a Denial of Service. This vulnerability was fixed in commit 71f9871.

CVE-2022-24249

CVSS3: 5.5

nvd

около 4 лет назад

A Null Pointer Dereference vulnerability exists in GPAC 1.1.0 via the xtra_box_write function in /box_code_base.c, which causes a Denial of Service. This vulnerability was fixed in commit 71f9871.

GHSA-fm8h-mgjv-jww5

CVSS3: 5.5

github

почти 4 года назад

A Null Pointer Dereference vulnerability exists in GPAC 1.1.0 via the xtra_box_write function in /box_code_base.c, which causes a Denial of Service. This vulnerability was fixed in commit 71f9871.