Debian Gpac vulnerabilities

CVE-2022-47094 [HIGH] CVE-2022-47094: gpac - GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Null pointer dereference ... GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Null pointer dereference via filters/dmx_m2ts.c:343 in m2tsdmx_declare_pid Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-4+deb11u2)

CVE-2022-2453 [HIGH] CVE-2022-2453: gpac - Use After Free in GitHub repository gpac/gpac prior to 2.1-DEV. Use After Free in GitHub repository gpac/gpac prior to 2.1-DEV. Scope: local bullseye: open

CVE-2022-2454 [HIGH] CVE-2022-2454: gpac - Integer Overflow or Wraparound in GitHub repository gpac/gpac prior to 2.1-DEV. Integer Overflow or Wraparound in GitHub repository gpac/gpac prior to 2.1-DEV. Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-4+deb11u2)

CVE-2022-29339 [HIGH] CVE-2022-29339: gpac - In GPAC 2.1-DEV-rev87-g053aae8-master, function BS_ReadByte() in utils/bitstream... In GPAC 2.1-DEV-rev87-g053aae8-master, function BS_ReadByte() in utils/bitstream.c has a failed assertion, which causes a Denial of Service. This vulnerability was fixed in commit 9ea93a2. Scope: local bullseye: open

CVE-2022-47659 [HIGH] CVE-2022-47659: gpac - GPAC MP4box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to Buffer Overflow in gf_bs_... GPAC MP4box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to Buffer Overflow in gf_bs_read_data Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-4+deb11u2)

CVE-2022-47657 [HIGH] CVE-2022-47657: gpac - GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to buffer overflow in functi... GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to buffer overflow in function hevc_parse_vps_extension of media_tools/av_parsers.c:7662 Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-4+deb11u2)

CVE-2022-43042 [HIGH] CVE-2022-43042: gpac - GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a heap buffer ov... GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a heap buffer overflow via the function FixSDTPInTRAF at isomedia/isom_intern.c. Scope: local bullseye: open

CVE-2022-45343 [HIGH] CVE-2022-45343: gpac - GPAC v2.1-DEV-rev478-g696e6f868-master was discovered to contain a heap use-afte... GPAC v2.1-DEV-rev478-g696e6f868-master was discovered to contain a heap use-after-free via the Q_IsTypeOn function at /gpac/src/bifs/unquantize.c. Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-4+deb11u2)

CVE-2022-24575 [HIGH] CVE-2022-24575: gpac - GPAC 1.0.1 is affected by a stack-based buffer overflow through MP4Box. GPAC 1.0.1 is affected by a stack-based buffer overflow through MP4Box. Scope: local bullseye: open

CVE-2022-47090 [HIGH] CVE-2022-47090: gpac - GPAC MP4box 2.1-DEV-rev574-g9d5bb184b contains a buffer overflow in gf_vvc_read_... GPAC MP4box 2.1-DEV-rev574-g9d5bb184b contains a buffer overflow in gf_vvc_read_pps_bs_internal function of media_tools/av_parsers.c, check needed for num_exp_tile_columns Scope: local bullseye: open

CVE-2022-45283 [HIGH] CVE-2022-45283: gpac - GPAC MP4box v2.0.0 was discovered to contain a stack overflow in the smil_parse_... GPAC MP4box v2.0.0 was discovered to contain a stack overflow in the smil_parse_time_list parameter at /scenegraph/svg_attributes.c. Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-4+deb11u2)

CVE-2022-30976 [HIGH] CVE-2022-30976: gpac - GPAC 2.0.0 misuses a certain Unicode utf8_wcslen (renamed gf_utf8_wcslen) functi... GPAC 2.0.0 misuses a certain Unicode utf8_wcslen (renamed gf_utf8_wcslen) function in utils/utf.c, resulting in a heap-based buffer over-read, as demonstrated by MP4Box. Scope: local bullseye: open

CVE-2022-1222 [MEDIUM] CVE-2022-1222: gpac - Inf loop in GitHub repository gpac/gpac prior to 2.1.0-DEV. Inf loop in GitHub repository gpac/gpac prior to 2.1.0-DEV. Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-4+deb11u2)

CVE-2022-36191 [MEDIUM] CVE-2022-36191: gpac - A heap-buffer-overflow had occurred in function gf_isom_dovi_config_get of isome... A heap-buffer-overflow had occurred in function gf_isom_dovi_config_get of isomedia/avc_ext.c:2490, as demonstrated by MP4Box. This vulnerability was fixed in commit fef6242. Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-4+deb11u2)

CVE-2022-2549 [MEDIUM] CVE-2022-2549: gpac - NULL Pointer Dereference in GitHub repository gpac/gpac prior to v2.1.0-DEV. NULL Pointer Dereference in GitHub repository gpac/gpac prior to v2.1.0-DEV. Scope: local bullseye: open

CVE-2022-24574 [MEDIUM] CVE-2022-24574: gpac - GPAC 1.0.1 is affected by a NULL pointer dereference in gf_dump_vrml_field.isra ... GPAC 1.0.1 is affected by a NULL pointer dereference in gf_dump_vrml_field.isra (). Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-4+deb11u2)

CVE-2022-43045 [MEDIUM] CVE-2022-43045: gpac - GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation v... GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function gf_dump_vrml_sffield at /scene_manager/scene_dump.c. Scope: local bullseye: open

CVE-2022-46490 [MEDIUM] CVE-2022-46490: gpac - GPAC version 2.1-DEV-rev505-gb9577e6ad-master was discovered to contain a memory... GPAC version 2.1-DEV-rev505-gb9577e6ad-master was discovered to contain a memory leak via the afrt_box_read function at box_code_adobe.c. Scope: local bullseye: open

CVE-2022-3957 [MEDIUM] CVE-2022-3957: gpac - A vulnerability classified as problematic was found in GPAC. Affected by this vu... A vulnerability classified as problematic was found in GPAC. Affected by this vulnerability is the function svg_parse_preserveaspectratio of the file scenegraph/svg_attributes.c of the component SVG Parser. The manipulation leads to memory leak. The attack can be launched remotely. The name of the patch is 2191e66aa7df750e8ef01781b1930bea87b713bb. It is recommended to

CVE-2022-47086 [MEDIUM] CVE-2022-47086: gpac - GPAC MP4Box v2.1-DEV-rev574-g9d5bb184b contains a segmentation violation via the... GPAC MP4Box v2.1-DEV-rev574-g9d5bb184b contains a segmentation violation via the function gf_sm_load_init_swf at scene_manager/swf_parse.c Scope: local bullseye: resolved (fixed in 1.0.1+dfsg1-4+deb11u2)