CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-45343
https://notcve.org/view.php?id=CVE-2022-45343
GPAC v2.1-DEV-rev478-g696e6f868-master was discovered to contain a heap use-after-free via the Q_IsTypeOn function at /gpac/src/bifs/unquantize.c. Se descubrió que GPAC v2.1-DEV-rev478-g696e6f868-master contenía un montón de use-after-free a través de la función Q_IsTypeOn en /gpac/src/bifs/unquantize.c. • https://github.com/gpac/gpac/issues/2315 https://www.debian.org/security/2023/dsa-5411 • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-3957 – GPAC SVG Parser svg_attributes.c svg_parse_preserveaspectratio memory leak
https://notcve.org/view.php?id=CVE-2022-3957
A vulnerability classified as problematic was found in GPAC. Affected by this vulnerability is the function svg_parse_preserveaspectratio of the file scenegraph/svg_attributes.c of the component SVG Parser. The manipulation leads to memory leak. The attack can be launched remotely. The name of the patch is 2191e66aa7df750e8ef01781b1930bea87b713bb. • https://github.com/gpac/gpac/commit/2191e66aa7df750e8ef01781b1930bea87b713bb https://vuldb.com/?id.213463 https://www.debian.org/security/2023/dsa-5411 • CWE-401: Missing Release of Memory after Effective Lifetime CWE-404: Improper Resource Shutdown or Release •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-43254
https://notcve.org/view.php?id=CVE-2022-43254
GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a memory leak via the component gf_list_new at utils/list.c. Se descubrió que GPAC v2.1-DEV-rev368-gfd054169b-master contenía una pérdida de memoria a través del componente gf_list_new en utils/list.c. • https://github.com/gpac/gpac/issues/2284 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-43255
https://notcve.org/view.php?id=CVE-2022-43255
GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a memory leak via the component gf_odf_new_iod at odf/odf_code.c. Se descubrió que GPAC v2.1-DEV-rev368-gfd054169b-master contenía una pérdida de memoria a través del componente gf_odf_new_iod en odf/odf_code.c. • https://github.com/gpac/gpac/issues/2285 https://www.debian.org/security/2023/dsa-5411 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-43043
https://notcve.org/view.php?id=CVE-2022-43043
GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function BD_CheckSFTimeOffset at /bifs/field_decode.c. Se ha detectado que GPAC versión 2.1-DEV-rev368-gfd054169b-master, contiene una violación de la segmentación por medio de la función BD_CheckSFTimeOffset en el archivo /bifs/field_decode.c • https://github.com/gpac/gpac/issues/2276 •