CVE-2023-47465
https://notcve.org/view.php?id=CVE-2023-47465
An issue in GPAC v.2.2.1 and before allows a local attacker to cause a denial of service (DoS) via the ctts_box_read function of file src/isomedia/box_code_base.c. Un problema en GPAC v.2.2.1 y anteriores permite que un atacante local provoque una denegación de servicio (DoS) a través de la función ctts_box_read del archivo src/isomedia/box_code_base.c. • https://github.com/gpac/gpac/issues/2652 •
CVE-2023-46871
https://notcve.org/view.php?id=CVE-2023-46871
GPAC version 2.3-DEV-rev602-ged8424300-master in MP4Box contains a memory leak in NewSFDouble scenegraph/vrml_tools.c:300. This vulnerability may lead to a denial of service. La versión 2.3-DEV-rev602-ged8424300-master de GPAC en MP4Box contiene una pérdida de memoria en NewSFDouble scenegraph/vrml_tools.c:300. Esta vulnerabilidad puede provocar una denegación de servicio. • https://gist.github.com/ReturnHere/d0899bb03b8f5e8fae118f2b76888486 https://github.com/gpac/gpac/issues/2658 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVE-2023-5998 – Out-of-bounds Read in gpac/gpac
https://notcve.org/view.php?id=CVE-2023-5998
Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.3.0-DEV. Lectura fuera de los límites en el repositorio de GitHub gpac/gpac anterior a 2.3.0-DEV. • https://github.com/gpac/gpac/commit/db74835944548fc3bdf03121b0e012373bdebb3e https://huntr.com/bounties/ea02a231-b688-422b-a881-ef415bcf6113 • CWE-125: Out-of-bounds Read •
CVE-2023-5595 – Denial of Service in gpac/gpac
https://notcve.org/view.php?id=CVE-2023-5595
Denial of Service in GitHub repository gpac/gpac prior to 2.3.0-DEV. Denegación de Servicio en el repositorio de GitHub gpac/gpac anterior a la versión 2.3.0-DEV. • https://github.com/gpac/gpac/commit/7a6f636db3360bb16d18078d51e8c596f31302a1 https://huntr.dev/bounties/0064cf76-ece1-495d-82b4-e4a1bebeb28e • CWE-400: Uncontrolled Resource Consumption •
CVE-2023-5586 – NULL Pointer Dereference in gpac/gpac
https://notcve.org/view.php?id=CVE-2023-5586
NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.3.0-DEV. Eliminación de referencia del puntero NULL en el repositorio de GitHub gpac/gpac anterior a 2.3.0-DEV. • https://github.com/gpac/gpac/commit/ca1b48f0abe71bf81a58995d7d75dc27f5a17ddc https://huntr.dev/bounties/d2a6ea71-3555-47a6-9b18-35455d103740 • CWE-476: NULL Pointer Dereference •