Описание
GPAC 2.0.0 misuses a certain Unicode utf8_wcslen (renamed gf_utf8_wcslen) function in utils/utf.c, resulting in a heap-based buffer over-read, as demonstrated by MP4Box.
Ссылки
- ExploitThird Party Advisory
- Third Party Advisory
- ExploitIssue TrackingPatchThird Party Advisory
- ExploitThird Party Advisory
- Third Party Advisory
- ExploitIssue TrackingPatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:gpac:gpac:2.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 47%
0.00239
Низкий
7.1 High
CVSS3
4 Medium
CVSS2
Дефекты
CWE-125
Связанные уязвимости
CVSS3: 7.1
ubuntu
больше 3 лет назад
GPAC 2.0.0 misuses a certain Unicode utf8_wcslen (renamed gf_utf8_wcslen) function in utils/utf.c, resulting in a heap-based buffer over-read, as demonstrated by MP4Box.
CVSS3: 7.1
debian
больше 3 лет назад
GPAC 2.0.0 misuses a certain Unicode utf8_wcslen (renamed gf_utf8_wcsl ...
CVSS3: 7.1
github
больше 3 лет назад
GPAC 2.0.0 misuses a certain Unicode utf8_wcslen (renamed gf_utf8_wcslen) function in utils/utf.c, resulting in a heap-based buffer over-read, as demonstrated by MP4Box.
EPSS
Процентиль: 47%
0.00239
Низкий
7.1 High
CVSS3
4 Medium
CVSS2
Дефекты
CWE-125