CVE-2022-36190

Опубликовано: 17 авг. 2022

Источник: debian

EPSS Низкий

Описание

GPAC mp4box 2.1-DEV-revUNKNOWN-master has a use-after-free vulnerability in function gf_isom_dovi_config_get. This vulnerability was fixed in commit fef6242.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gpac	fixed	2.0.0+dfsg1-4		package
gpac	end-of-life		buster	package

Примечания

https://github.com/gpac/gpac/issues/2220
Fixed along with: https://github.com/gpac/gpac/issues/2218
https://github.com/gpac/gpac/commit/fef6242c69be4f7ba22b32578e4b62648a3d4ed3

EPSS

Процентиль: 32%

0.00127

Низкий

Связанные уязвимости

CVE-2022-36190

CVSS3: 9.8

ubuntu

больше 3 лет назад

GPAC mp4box 2.1-DEV-revUNKNOWN-master has a use-after-free vulnerability in function gf_isom_dovi_config_get. This vulnerability was fixed in commit fef6242.

CVE-2022-36190

CVSS3: 9.8

nvd

больше 3 лет назад

GPAC mp4box 2.1-DEV-revUNKNOWN-master has a use-after-free vulnerability in function gf_isom_dovi_config_get. This vulnerability was fixed in commit fef6242.

GHSA-h6jp-7q5x-g3xx

CVSS3: 9.8

github

больше 3 лет назад

GPAC mp4box 2.1-DEV-revUNKNOWN-master has a use-after-free vulnerability in function gf_isom_dovi_config_get. This vulnerability was fixed in commit fef6242.

EPSS

Процентиль: 32%

0.00127

Низкий