Vulnerabilities > Gpac
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-13 | CVE-2021-40570 | Double Free vulnerability in Gpac 1.0.1 The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the avc_compute_poc function in av_parsers.c, which allows attackers to cause a denial of service, even code execution and escalation of privileges. | 7.8 |
| 2022-01-13 | CVE-2021-40571 | Double Free vulnerability in Gpac 1.0.1 The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the ilst_box_read function in box_code_apple.c, which allows attackers to cause a denial of service, even code execution and escalation of privileges. | 7.8 |
| 2022-01-12 | CVE-2021-40562 | Incorrect Comparison vulnerability in Gpac A Segmentation fault caused by a floating point exception exists in Gpac through 1.0.1 using mp4box via the naludmx_enqueue_or_dispatch function in reframe_nalu.c, which causes a denial of service. | 5.5 |
| 2022-01-12 | CVE-2021-40563 | NULL Pointer Dereference vulnerability in Gpac A Segmentation fault exists casued by null pointer dereference exists in Gpac through 1.0.1 via the naludmx_create_avc_decoder_config function in reframe_nalu.c when using mp4box, which causes a denial of service. | 5.5 |
| 2022-01-12 | CVE-2021-40564 | NULL Pointer Dereference vulnerability in Gpac A Segmentation fault caused by null pointer dereference vulnerability eists in Gpac through 1.0.2 via the avc_parse_slice function in av_parsers.c when using mp4box, which causes a denial of service. | 5.5 |
| 2022-01-12 | CVE-2021-40565 | NULL Pointer Dereference vulnerability in Gpac A Segmentation fault caused by a null pointer dereference vulnerability exists in Gpac through 1.0.1 via the gf_avc_parse_nalu function in av_parsers.c when using mp4box, which causes a denial of service. | 5.5 |
| 2022-01-12 | CVE-2021-40566 | Use After Free vulnerability in Gpac A Segmentation fault casued by heap use after free vulnerability exists in Gpac through 1.0.1 via the mpgviddmx_process function in reframe_mpgvid.c when using mp4box, which causes a denial of service. | 5.5 |
| 2022-01-12 | CVE-2021-40559 | NULL Pointer Dereference vulnerability in Gpac A null pointer deference vulnerability exists in gpac through 1.0.1 via the naludmx_parse_nal_avc function in reframe_nalu, which allows a denail of service. | 5.5 |
| 2022-01-12 | CVE-2021-36417 | Out-of-bounds Write vulnerability in Gpac 1.0.1 A heap-based buffer overflow vulnerability exists in GPAC v1.0.1 in the gf_isom_dovi_config_get function in MP4Box, which causes a denial of service or execute arbitrary code via a crafted file. | 7.8 |
| 2022-01-10 | CVE-2021-36412 | Out-of-bounds Write vulnerability in Gpac 1.0.1 A heap-based buffer overflow vulnerability exists in MP4Box in GPAC 1.0.1 via the gp_rtp_builder_do_mpeg12_video function, which allows attackers to possibly have unspecified other impact via a crafted file in the MP4Box command, | 7.8 |