CVE-2023-48958 — Missing Release of Memory after Effective Lifetime in Gpac

Severity

5.5MEDIUMNVD

EPSS

0.0%

top 89.88%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedDec 7

Description

gpac 2.3-DEV-rev617-g671976fcc-master contains memory leaks in gf_mpd_resolve_url media_tools/mpd.c:4589.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

▶NVDgpac/gpac2.3-dev-rev617-g671976fcc-master

GHSA

GHSA-7884-jhm8-9h7h: gpac 2↗2023-12-07

▶

OSV

CVE-2023-48958: gpac 2↗2023-12-07

▶

Debian

CVE-2023-48958: gpac - gpac 2.3-DEV-rev617-g671976fcc-master contains memory leaks in gf_mpd_resolve_ur...↗2023

▶