Debian Gpac vulnerabilities

CVE-2021-30014 [MEDIUM] CVE-2021-30014: ccextractor - There is a integer overflow in media_tools/av_parsers.c in the hevc_parse_slice_... There is a integer overflow in media_tools/av_parsers.c in the hevc_parse_slice_segment function in GPAC from v0.9.0-preview to 1.0.1 which results in a crash. Scope: local bullseye: open

CVE-2021-44926 [MEDIUM] CVE-2021-44926: gpac - A null pointer dereference vulnerability exists in gpac 1.1.0-DEV in the gf_node... A null pointer dereference vulnerability exists in gpac 1.1.0-DEV in the gf_node_get_tag function, which causes a segmentation fault and application crash. Scope: local bullseye: open

CVE-2021-45760 [MEDIUM] CVE-2021-45760: gpac - GPAC v1.1.0 was discovered to contain an invalid memory address dereference via ... GPAC v1.1.0 was discovered to contain an invalid memory address dereference via the function gf_list_last(). This vulnerability allows attackers to cause a Denial of Service (DoS). Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-4+deb11u2)

CVE-2021-32132 [MEDIUM] CVE-2021-32132: gpac - The abst_box_size function in GPAC 1.0.1 allows attackers to cause a denial of s... The abst_box_size function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. Scope: local bullseye: open

CVE-2021-40606 [MEDIUM] CVE-2021-40606: gpac - The gf_bs_write_data function in GPAC 1.0.1 allows attackers to cause a denial o... The gf_bs_write_data function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command. Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-4+deb11u2)

CVE-2021-45289 [MEDIUM] CVE-2021-45289: gpac - A vulnerability exists in GPAC 1.0.1 due to an omission of security-relevant Inf... A vulnerability exists in GPAC 1.0.1 due to an omission of security-relevant Information, which could cause a Denial of Service. The program terminates with signal SIGKILL. Scope: local bullseye: resolved

CVE-2021-21835 [HIGH] CVE-2021-21835: gpac - An exploitable integer overflow vulnerability exists within the MPEG-4 decoding ... An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input when decoding the atom associated with the “csgp” FOURCC can cause an integer overflow due to unchecked arithmetic resulting in a heap-based buffer overflow that causes memory corruption.

CVE-2021-31254 [HIGH] CVE-2021-31254: gpac - Buffer overflow in the tenc_box_read function in MP4Box in GPAC 1.0.1 allows att... Buffer overflow in the tenc_box_read function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file, related invalid IV sizes. Scope: local bullseye: resolved

CVE-2021-21862 [HIGH] CVE-2021-21862: gpac - Multiple exploitable integer truncation vulnerabilities exist within the MPEG-4 ... Multiple exploitable integer truncation vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an improper memory allocation resulting in a heap-based buffer overflow that causes memory corruption The implementation of the parser used for the “Xtra” FOURCC code is

CVE-2021-31259 [MEDIUM] CVE-2021-31259: gpac - The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allows attacke... The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. Scope: local bullseye: resolved

CVE-2021-32134 [MEDIUM] CVE-2021-32134: ccextractor - The gf_odf_desc_copy function in GPAC 1.0.1 allows attackers to cause a denial o... The gf_odf_desc_copy function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. Scope: local bullseye: resolved

CVE-2021-32139 [MEDIUM] CVE-2021-32139: ccextractor - The gf_isom_vp_config_get function in GPAC 1.0.1 allows attackers to cause a den... The gf_isom_vp_config_get function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. Scope: local bullseye: resolved

CVE-2021-21856 [HIGH] CVE-2021-21856: gpac - Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 de... Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an integer overflow due to unchecked addition arithmetic resulting in a heap-based buffer overflow that causes memory corruption. An attacker can convince a user to open a

CVE-2021-21851 [HIGH] CVE-2021-21851: gpac - Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 de... Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input at “csgp” decoder sample group description indices can cause an integer overflow due to unchecked arithmetic resulting in a heap-based buffer overflow that causes memory corruption.

CVE-2021-31261 [MEDIUM] CVE-2021-31261: gpac - The gf_hinter_track_new function in GPAC 1.0.1 allows attackers to read memory v... The gf_hinter_track_new function in GPAC 1.0.1 allows attackers to read memory via a crafted file in the MP4Box command. Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-4)

CVE-2021-31256 [MEDIUM] CVE-2021-31256: gpac - Memory leak in the stbl_GetSampleInfos function in MP4Box in GPAC 1.0.1 allows a... Memory leak in the stbl_GetSampleInfos function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file. Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-4)

CVE-2020-19751 [CRITICAL] CVE-2020-19751: ccextractor - An issue was discovered in gpac 0.8.0. The gf_odf_del_ipmp_tool function in odf_... An issue was discovered in gpac 0.8.0. The gf_odf_del_ipmp_tool function in odf_code.c has a heap-based buffer over-read. Scope: local bullseye: open

CVE-2020-11558 [CRITICAL] CVE-2020-11558: gpac - An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by MP4Box. a... An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by MP4Box. audio_sample_entry_Read in isomedia/box_code_base.c does not properly decide when to make gf_isom_box_del calls. This leads to various use-after-free outcomes involving mdia_Read, gf_isom_delete_movie, and gf_isom_parse_movie_boxes. Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-2

CVE-2020-35982 [HIGH] CVE-2020-35982: gpac - An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid poi... An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an invalid pointer dereference in the function gf_hinter_track_finalize() in media_tools/isom_hinter.c. Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-4)

CVE-2020-23931 [HIGH] CVE-2020-23931: gpac - An issue was discovered in gpac before 1.0.1. The abst_box_read function in box_... An issue was discovered in gpac before 1.0.1. The abst_box_read function in box_code_adobe.c has a heap-based buffer over-read. Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-2)