CVE-2022-24578

Опубликовано: 14 мар. 2022

Источник: debian

Описание

GPAC 1.0.1 is affected by a heap-based buffer overflow in SFS_AddString () at bifs/script_dec.c.

Пакет	Статус	Версия исправления	Релиз	Тип
gpac	fixed	2.0.0+dfsg1-2		package
gpac	end-of-life		buster	package
gpac	end-of-life		stretch	package

https://huntr.dev/bounties/1691cca3-ab54-4259-856b-751be2395b11/
https://github.com/gpac/gpac/commit/b5741da08e88e8dcc8da0a7669b92405b9862850 (v2.0.0)

CVE-2022-24578

CVSS3: 7.8

ubuntu

почти 4 года назад

GPAC 1.0.1 is affected by a heap-based buffer overflow in SFS_AddString () at bifs/script_dec.c.

CVE-2022-24578

CVSS3: 7.8

nvd

почти 4 года назад

GPAC 1.0.1 is affected by a heap-based buffer overflow in SFS_AddString () at bifs/script_dec.c.

GHSA-gw88-4vw3-v8vg

CVSS3: 7.8

github

почти 4 года назад

GPAC 1.0.1 is affected by a heap-based buffer overflow in SFS_AddString () at bifs/script_dec.c.