CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 2CVE-2019-11222
https://notcve.org/view.php?id=CVE-2019-11222
gf_bin128_parse in utils/os_divers.c in GPAC 0.7.1 has a buffer overflow issue for the crypt feature when encountering a crafted_drm_file.xml file. gf_bin128_parse in utils/os_divers.c en GPAC 0.7.1 tiene un problema de desbordamiento de búfer para la funcionalidad criptográfica cuando se encuentra con un archivo crafted_drm_file.xml. • https://github.com/gpac/gpac/commit/f3698bb1bce62402805c3fda96551a23101a32f9 https://github.com/gpac/gpac/issues/1204 https://github.com/gpac/gpac/issues/1205 https://lists.debian.org/debian-lts-announce/2019/04/msg00025.html • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2019-11221
https://notcve.org/view.php?id=CVE-2019-11221
GPAC 0.7.1 has a buffer overflow issue in gf_import_message() in media_import.c. GPAC 0.7.1 presenta un problema de desbordamiento de buffer en gf_import_message() in media_import.c. • https://github.com/gpac/gpac/issues/1203 https://lists.debian.org/debian-lts-announce/2019/04/msg00025.html • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 1CVE-2018-20760
https://notcve.org/view.php?id=CVE-2018-20760
In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because a certain -1 return value is mishandled. GPAC versión 0.7.1 y anteriores, gf_text_get_utf8_line en media_tools/text_import.c en libgpac_static.a permite una escritura fuera de límites porque un determinado valor de retorno -1 se manjea de forma inadecuada. • https://github.com/gpac/gpac/commit/4c1360818fc8948e9307059fba4dc47ba8ad255d https://github.com/gpac/gpac/issues/1177 https://lists.debian.org/debian-lts-announce/2019/02/msg00040.html https://usn.ubuntu.com/3926-1 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 1CVE-2018-20761
https://notcve.org/view.php?id=CVE-2018-20761
GPAC version 0.7.1 and earlier has a Buffer Overflow vulnerability in the gf_sm_load_init function in scene_manager.c in libgpac_static.a. GPAC versión 0.7.1 y anteriores tiene una vulnerabilidad de desbordamiento de búfer en la función gf_sm_load_init en scene_manager.c en libgpac_static.a. • https://github.com/gpac/gpac/commit/35ab4475a7df9b2a4bcab235e379c0c3ec543658 https://github.com/gpac/gpac/issues/1186 https://lists.debian.org/debian-lts-announce/2019/02/msg00040.html https://usn.ubuntu.com/3926-1 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 1CVE-2018-20762
https://notcve.org/view.php?id=CVE-2018-20762
GPAC version 0.7.1 and earlier has a buffer overflow vulnerability in the cat_multiple_files function in applications/mp4box/fileimport.c when MP4Box is used for a local directory containing crafted filenames. GPAC versión 0.7.1 y anteriores tiene una vulnerabilidad de desbordamiento de búfer en la función cat_multiple_files en aplicaciones/mp4box/fileimport.c cuando MP4Box se utiliza para un directorio local que contiene nombres de archivo creados. • https://github.com/gpac/gpac/commit/35ab4475a7df9b2a4bcab235e379c0c3ec543658 https://github.com/gpac/gpac/issues/1187 https://lists.debian.org/debian-lts-announce/2019/02/msg00040.html https://usn.ubuntu.com/3926-1 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •