CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-3957 – GPAC SVG Parser svg_attributes.c svg_parse_preserveaspectratio memory leak
https://notcve.org/view.php?id=CVE-2022-3957
A vulnerability classified as problematic was found in GPAC. Affected by this vulnerability is the function svg_parse_preserveaspectratio of the file scenegraph/svg_attributes.c of the component SVG Parser. The manipulation leads to memory leak. The attack can be launched remotely. The name of the patch is 2191e66aa7df750e8ef01781b1930bea87b713bb. • https://github.com/gpac/gpac/commit/2191e66aa7df750e8ef01781b1930bea87b713bb https://vuldb.com/?id.213463 https://www.debian.org/security/2023/dsa-5411 • CWE-401: Missing Release of Memory after Effective Lifetime CWE-404: Improper Resource Shutdown or Release •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-43254
https://notcve.org/view.php?id=CVE-2022-43254
GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a memory leak via the component gf_list_new at utils/list.c. Se descubrió que GPAC v2.1-DEV-rev368-gfd054169b-master contenía una pérdida de memoria a través del componente gf_list_new en utils/list.c. • https://github.com/gpac/gpac/issues/2284 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-43255
https://notcve.org/view.php?id=CVE-2022-43255
GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a memory leak via the component gf_odf_new_iod at odf/odf_code.c. Se descubrió que GPAC v2.1-DEV-rev368-gfd054169b-master contenía una pérdida de memoria a través del componente gf_odf_new_iod en odf/odf_code.c. • https://github.com/gpac/gpac/issues/2285 https://www.debian.org/security/2023/dsa-5411 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-43043
https://notcve.org/view.php?id=CVE-2022-43043
GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function BD_CheckSFTimeOffset at /bifs/field_decode.c. Se ha detectado que GPAC versión 2.1-DEV-rev368-gfd054169b-master, contiene una violación de la segmentación por medio de la función BD_CheckSFTimeOffset en el archivo /bifs/field_decode.c • https://github.com/gpac/gpac/issues/2276 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-43045
https://notcve.org/view.php?id=CVE-2022-43045
GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function gf_dump_vrml_sffield at /scene_manager/scene_dump.c. Se descubrió que GPAC versión 2.1-DEV-rev368-gfd054169b-master, contiene una violación de segmentación por medio de la función gf_dump_vrml_sffield en el archivo /scene_manager/scene_dump.c • https://github.com/gpac/gpac/issues/2277 •