» 2021 » 4월

CVE-2021-30022

Posted on 2021년 4월 20일2021년 4월 20일 by admin

CVE-2021-30022

There is a integer overflow in media_tools/av_parsers.c in the gf_avc_read_pps_bs_internal in GPAC 1.0.1. pps_id may be a negative number, so it will not return. However, avc->pps only has 255 unit, so there is an overflow, which results a crash.

Source: CVE-2021-30022

CVE-2021-30020

Posted on 2021년 4월 20일2021년 4월 20일 by admin

CVE-2021-30020

In the function gf_hevc_read_pps_bs_internal function in media_tools/av_parsers.c in GPAC 1.0.1 there is a loop, which with crafted file, pps->num_tile_columns may be larger than sizeof(pps->column_width), which results in a heap overflow in the loop.

Source: CVE-2021-30020

CVE-2021-30199

Posted on 2021년 4월 20일2021년 4월 20일 by admin

CVE-2021-30199

In filters/reframe_latm.c in GPAC 1.0.1 there is a Null Pointer Dereference, when gf_filter_pck_get_data is called. The first arg pck may be null with a crafted mp4 file,which results in a crash.

Source: CVE-2021-30199

CVE-2021-30019

Posted on 2021년 4월 20일2021년 4월 20일 by admin

CVE-2021-30019

In the adts_dmx_process function in filters/reframe_adts.c in GPAC 1.0.1, a crafted file may cause ctx->hdr.frame_size to be smaller than ctx->hdr.hdr_size, resulting in size to be a negative number and a heap overflow in the memcpy.

Source: CVE-2021-30019

CVE-2021-30014

Posted on 2021년 4월 20일2021년 4월 20일 by admin

CVE-2021-30014

There is a integer overflow in media_tools/av_parsers.c in the hevc_parse_slice_segment function in GPAC 1.0.1 which results in a crash.

Source: CVE-2021-30014

CVE-2021-31261

Posted on 2021년 4월 20일2021년 4월 20일 by admin

CVE-2021-31261

The gf_hinter_track_new function in GPAC 1.0.1 allows attackers to read memory via a crafted file in the MP4Box command.

Source: CVE-2021-31261

CVE-2021-31259

Posted on 2021년 4월 20일2021년 4월 20일 by admin

CVE-2021-31259

The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.

Source: CVE-2021-31259

CVE-2021-31258

Posted on 2021년 4월 20일2021년 4월 20일 by admin

CVE-2021-31258

The gf_isom_set_extraction_slc function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.

Source: CVE-2021-31258

CVE-2021-31260

Posted on 2021년 4월 20일2021년 4월 20일 by admin

CVE-2021-31260

The MergeTrack function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.

Source: CVE-2021-31260

CVE-2021-31254

Posted on 2021년 4월 20일2021년 4월 20일 by admin

CVE-2021-31254

Buffer overflow in the tenc_box_read function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file, related invalid IV sizes.

Source: CVE-2021-31254