Vulnerabilities > Gpac > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-04 | CVE-2020-22352 | NULL Pointer Dereference vulnerability in Gpac 0.8.0 The gf_dash_segmenter_probe_input function in GPAC v0.8 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. | 5.5 |
| 2021-08-04 | CVE-2020-24829 | Out-of-bounds Write vulnerability in Gpac An issue was discovered in GPAC from v0.5.2 to v0.8.0, as demonstrated by MP4Box. | 5.5 |
| 2021-07-21 | CVE-2020-19481 | Out-of-bounds Read vulnerability in Gpac An issue was discovered in GPAC before 0.8.0, as demonstrated by MP4Box. | 5.5 |
| 2021-07-21 | CVE-2020-19488 | NULL Pointer Dereference vulnerability in Gpac 0.8.0 An issue was discovered in box_code_apple.c:119 in Gpac MP4Box 0.8.0, allows attackers to cause a Denial of Service due to an invalid read on function ilst_item_Read. | 5.5 |
| 2021-04-21 | CVE-2020-23932 | NULL Pointer Dereference vulnerability in Gpac An issue was discovered in gpac before 1.0.1. | 5.5 |
| 2021-04-21 | CVE-2020-23930 | NULL Pointer Dereference vulnerability in Gpac An issue was discovered in gpac through 20200801. | 5.5 |
| 2021-04-19 | CVE-2021-30199 | NULL Pointer Dereference vulnerability in Gpac 1.0.1 In filters/reframe_latm.c in GPAC 1.0.1 there is a Null Pointer Dereference, when gf_filter_pck_get_data is called. | 5.5 |
| 2021-04-19 | CVE-2021-30022 | Integer Overflow or Wraparound vulnerability in Gpac There is a integer overflow in media_tools/av_parsers.c in the gf_avc_read_pps_bs_internal in GPAC from 0.5.2 to 1.0.1. | 5.5 |
| 2021-04-19 | CVE-2021-30020 | Out-of-bounds Write vulnerability in Gpac 1.0.1 In the function gf_hevc_read_pps_bs_internal function in media_tools/av_parsers.c in GPAC 1.0.1 there is a loop, which with crafted file, pps->num_tile_columns may be larger than sizeof(pps->column_width), which results in a heap overflow in the loop. | 5.5 |
| 2021-04-19 | CVE-2021-30019 | Out-of-bounds Write vulnerability in Gpac 1.0.1 In the adts_dmx_process function in filters/reframe_adts.c in GPAC 1.0.1, a crafted file may cause ctx->hdr.frame_size to be smaller than ctx->hdr.hdr_size, resulting in size to be a negative number and a heap overflow in the memcpy. | 5.5 |