Vulnerabilities > CVE-2022-45343 - Use After Free vulnerability in Gpac

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

NVD

Published: 2022-11-29

Updated: 2023-05-27

Summary

GPAC v2.1-DEV-rev478-g696e6f868-master was discovered to contain a heap use-after-free via the Q_IsTypeOn function at /gpac/src/bifs/unquantize.c.

Part	Description	Count
Application	Gpac Gpac Gpac 0.5.2 Gpac Gpac 1.1.0-Dev-Rev1663-G881C6A94A-Master Gpac Gpac 1.1.0-Dev-Rev1727-G8Be34973D-Master Gpac Gpac 1.1.0-Dev-Rev1759-Geb2D1E6Dd Gpac Gpac 2.1 Gpac Gpac 2.1-Dev-Rev87-G053Aae8-Master Gpac Gpac 2.1-Dev-Rev368-Gfd054169B-Master Gpac Gpac 2.1-Dev-Rev428-Gcb8Ae46C8-Master Gpac Gpac 2.1-Dev-Rev478-G696E6F868-Master Gpac Gpac 2.1-Dev-Rev490-G68064E101-Master Gpac Gpac 2.1-Dev-Rev593-G007Bf61A0	11