Information on source package gpac

Available versions

ReleaseVersion
stretch0.5.2-426-gc5ad4e4+dfsg5-3+deb9u1
buster0.5.2-426-gc5ad4e4+dfsg5-5
bullseye1.0.1+dfsg1-4
sid1.0.1+dfsg1-4

Open issues

BugstretchbusterbullseyesidDescription
CVE-2021-31262vulnerablefixedfixedfixedThe AV1_DuplicateConfig function in GPAC 1.0.1 allows attackers to cau ...
CVE-2021-31260vulnerablevulnerable (no DSA)fixedfixedThe MergeTrack function in GPAC 1.0.1 allows attackers to cause a deni ...
CVE-2021-31258vulnerablevulnerable (no DSA)fixedfixedThe gf_isom_set_extraction_slc function in GPAC 1.0.1 allows attackers ...
CVE-2021-31257vulnerablevulnerable (no DSA)fixedfixedThe HintFile function in GPAC 1.0.1 allows attackers to cause a denial ...
CVE-2021-31255vulnerablefixedfixedfixedBuffer overflow in the abst_box_read function in MP4Box in GPAC 1.0.1 ...
CVE-2021-30199vulnerablefixedfixedfixedIn filters/reframe_latm.c in GPAC 1.0.1 there is a Null Pointer Derefe ...
CVE-2021-30022vulnerablefixedfixedfixedThere is a integer overflow in media_tools/av_parsers.c in the gf_avc_ ...
CVE-2021-30020vulnerablefixedfixedfixedIn the function gf_hevc_read_pps_bs_internal function in media_tools/a ...
CVE-2021-30019vulnerablefixedfixedfixedIn the adts_dmx_process function in filters/reframe_adts.c in GPAC 1.0 ...
CVE-2021-30015vulnerablefixedfixedfixedThere is a Null Pointer Dereference in function filter_core/filter_pck ...
CVE-2021-30014vulnerablevulnerable (no DSA)fixedfixedThere is a integer overflow in media_tools/av_parsers.c in the hevc_pa ...
CVE-2021-28300vulnerable (no DSA, postponed)vulnerable (no DSA)fixedfixedNULL Pointer Dereference in the "isomedia/track.c" module's "MergeTrac ...
CVE-2020-35982vulnerablevulnerable (no DSA)fixedfixedAn issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an i ...
CVE-2020-35981vulnerablevulnerable (no DSA)fixedfixedAn issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an i ...
CVE-2020-35980vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerableAn issue was discovered in GPAC version 0.8.0 and 1.0.1. There is a us ...
CVE-2020-35979vulnerablevulnerable (no DSA)fixedfixedAn issue was discovered in GPAC version 0.8.0 and 1.0.1. There is heap ...
CVE-2020-11558vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by ...
CVE-2020-6631vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in GPAC version 0.8.0. There is a NULL pointer ...
CVE-2020-6630vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in GPAC version 0.8.0. There is a NULL pointer ...
CVE-2019-20632vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ...
CVE-2019-20631vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ...
CVE-2019-20630vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ...
CVE-2019-20629vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ...
CVE-2019-20628vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ...
CVE-2019-20208vulnerable (no DSA)vulnerable (no DSA)fixedfixeddimC_Read in isomedia/box_code_3gpp.c in GPAC 0.8.0 has a stack-based ...
CVE-2019-20171vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ...
CVE-2019-20170vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ...
CVE-2019-20165vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ...
CVE-2019-20163vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ...
CVE-2019-20162vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ...
CVE-2019-20161vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ...
CVE-2019-13618vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn GPAC before 0.8.0, isomedia/isom_read.c in libgpac.a has a heap-bas ...
CVE-2019-12483vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in GPAC 0.7.1. There is a heap-based buffer ov ...
CVE-2019-12482vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in GPAC 0.7.1. There is a NULL pointer derefer ...
CVE-2019-12481vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in GPAC 0.7.1. There is a NULL pointer derefer ...
CVE-2019-11222vulnerable (no DSA)fixedfixedfixedgf_bin128_parse in utils/os_divers.c in GPAC 0.7.1 has a buffer overfl ...
CVE-2019-11221vulnerable (no DSA)fixedfixedfixedGPAC 0.7.1 has a buffer overflow issue in gf_import_message() in media ...
CVE-2018-21016vulnerable (no DSA)vulnerable (no DSA)fixedfixedaudio_sample_entry_AddBox() at isomedia/box_code_base.c in GPAC 0.7.1 ...
CVE-2018-21015vulnerable (no DSA)vulnerable (no DSA)fixedfixedAVC_DuplicateConfig() at isomedia/avc_ext.c in GPAC 0.7.1 allows remot ...

Open unimportant issues

BugstretchbusterbullseyesidDescription
CVE-2021-31261vulnerablevulnerablefixedfixedThe gf_hinter_track_new function in GPAC 1.0.1 allows attackers to rea ...
CVE-2021-31256vulnerablevulnerablefixedfixedMemory leak in the stbl_GetSampleInfos function in MP4Box in GPAC 1.0. ...

Resolved issues

BugDescription
CVE-2021-31259The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allo ...
CVE-2021-31254Buffer overflow in the tenc_box_read function in MP4Box in GPAC 1.0.1 ...
CVE-2021-29279There is a integer overflow in function filter_core/filter_props.c:gf_ ...
CVE-2020-23932An issue was discovered in gpac before 1.0.1. A NULL pointer dereferen ...
CVE-2020-23931An issue was discovered in gpac before 1.0.1. The abst_box_read functi ...
CVE-2020-23930An issue was discovered in gpac through 20200801. A NULL pointer deref ...
CVE-2020-23928An issue was discovered in gpac before 1.0.1. The abst_box_read functi ...
CVE-2019-20169An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ...
CVE-2019-20168An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ...
CVE-2019-20167An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ...
CVE-2019-20166An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ...
CVE-2019-20164An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ...
CVE-2019-20160An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ...
CVE-2019-20159An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ...
CVE-2018-1000100GPAC MP4Box version 0.7.1 and earlier contains a Buffer Overflow vulne ...
CVE-2018-21017GPAC 0.7.1 has a memory leak in dinf_Read in isomedia/box_code_base.c. ...
CVE-2018-20763In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_i ...
CVE-2018-20762GPAC version 0.7.1 and earlier has a buffer overflow vulnerability in ...
CVE-2018-20761GPAC version 0.7.1 and earlier has a Buffer Overflow vulnerability in ...
CVE-2018-20760In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_i ...
CVE-2018-13006An issue was discovered in MP4Box in GPAC 0.7.1. There is a heap-based ...
CVE-2018-13005An issue was discovered in MP4Box in GPAC 0.7.1. The function urn_Read ...
CVE-2018-7752GPAC through 0.7.1 has a Buffer Overflow in the gf_media_avc_read_sps ...

Security announcements

DSA / DLADescription
DLA-2072-1gpac - security update
DLA-1841-1gpac - security update
DLA-1765-1gpac - security update
DLA-1693-1gpac - security update
DLA-1432-1gpac - security update

Search for package or bug name: Reporting problems