| Bug | stretch | buster | bullseye | bookworm | sid | Description |
|---|
| CVE-2021-41459 | fixed | fixed | vulnerable | vulnerable | vulnerable | There is a stack buffer overflow in MP4Box v1.0.1 at src/filters/dmx_n ... |
| CVE-2021-41457 | fixed | fixed | vulnerable | vulnerable | vulnerable | There is a stack buffer overflow in MP4Box 1.1.0 at src/filters/dmx_nh ... |
| CVE-2021-41456 | fixed | fixed | vulnerable | vulnerable | vulnerable | There is a stack buffer overflow in MP4Box v1.0.1 at src/filters/dmx_n ... |
| CVE-2021-36584 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable | vulnerable | An issue was discovered in GPAC 1.0.1. There is a heap-based buffer ov ... |
| CVE-2021-33362 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable | vulnerable | Stack buffer overflow in the hevc_parse_vps_extension function in MP4B ... |
| CVE-2021-32440 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable | vulnerable | The Media_RewriteODFrame function in GPAC 1.0.1 allows attackers to ca ... |
| CVE-2021-32439 | vulnerable (no DSA, postponed) | vulnerable | vulnerable | vulnerable | vulnerable | Buffer overflow in the stbl_AppendSize function in MP4Box in GPAC 1.0. ... |
| CVE-2021-32438 | fixed | fixed | vulnerable (no DSA, ignored) | vulnerable | vulnerable | The gf_media_export_filters function in GPAC 1.0.1 allows attackers to ... |
| CVE-2021-32437 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable | vulnerable | The gf_hinter_finalize function in GPAC 1.0.1 allows attackers to caus ... |
| CVE-2021-32271 | vulnerable | vulnerable | fixed | fixed | fixed | An issue was discovered in gpac through 20200801. A stack-buffer-overf ... |
| CVE-2021-32268 | vulnerable | vulnerable | fixed | fixed | fixed | Buffer overflow vulnerability in function gf_fprintf in os_file.c in g ... |
| CVE-2021-32139 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable | vulnerable | The gf_isom_vp_config_get function in GPAC 1.0.1 allows attackers to c ... |
| CVE-2021-32138 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable | vulnerable | The DumpTrackInfo function in GPAC 1.0.1 allows attackers to cause a d ... |
| CVE-2021-32137 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable | vulnerable | Heap buffer overflow in the URL_GetProtocolType function in MP4Box in ... |
| CVE-2021-32136 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable | vulnerable | Heap buffer overflow in the print_udta function in MP4Box in GPAC 1.0. ... |
| CVE-2021-32135 | fixed | fixed | vulnerable (no DSA, ignored) | vulnerable | vulnerable | The trak_box_size function in GPAC 1.0.1 allows attackers to cause a d ... |
| CVE-2021-32134 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable | vulnerable | The gf_odf_desc_copy function in GPAC 1.0.1 allows attackers to cause ... |
| CVE-2021-32132 | fixed | fixed | vulnerable (no DSA, ignored) | vulnerable | vulnerable | The abst_box_size function in GPAC 1.0.1 allows attackers to cause a d ... |
| CVE-2021-31260 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | The MergeTrack function in GPAC 1.0.1 allows attackers to cause a deni ... |
| CVE-2021-31258 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | The gf_isom_set_extraction_slc function in GPAC 1.0.1 allows attackers ... |
| CVE-2021-31257 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | The HintFile function in GPAC 1.0.1 allows attackers to cause a denial ... |
| CVE-2021-30014 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | There is a integer overflow in media_tools/av_parsers.c in the hevc_pa ... |
| CVE-2021-28300 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | fixed | fixed | fixed | NULL Pointer Dereference in the "isomedia/track.c" module's "MergeTrac ... |
| CVE-2021-21852 | fixed | fixed | vulnerable | fixed | fixed | Multiple exploitable integer overflow vulnerabilities exist within the ... |
| CVE-2020-35982 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an i ... |
| CVE-2020-35981 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is an i ... |
| CVE-2020-35980 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is a us ... |
| CVE-2020-35979 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is heap ... |
| CVE-2020-24829 | vulnerable | vulnerable | fixed | fixed | fixed | An issue was discovered in GPAC v0.8.0, as demonstrated by MP4Box. It ... |
| CVE-2020-23269 | vulnerable | vulnerable | fixed | fixed | fixed | An issue was discovered in gpac 0.8.0. The stbl_GetSampleSize function ... |
| CVE-2020-23267 | vulnerable | vulnerable | fixed | fixed | fixed | An issue was discovered in gpac 0.8.0. The gf_hinter_track_process fun ... |
| CVE-2020-23266 | vulnerable | vulnerable | fixed | fixed | fixed | An issue was discovered in gpac 0.8.0. The OD_ReadUTF8String function ... |
| CVE-2020-22678 | vulnerable | vulnerable (no DSA, ignored) | fixed | fixed | fixed | An issue was discovered in gpac 0.8.0. The gf_media_nalu_remove_emulat ... |
| CVE-2020-22677 | vulnerable | vulnerable (no DSA, ignored) | fixed | fixed | fixed | An issue was discovered in gpac 0.8.0. The dump_data_hex function in b ... |
| CVE-2020-22675 | vulnerable | vulnerable (no DSA, ignored) | fixed | fixed | fixed | An issue was discovered in gpac 0.8.0. The GetGhostNum function in stb ... |
| CVE-2020-22674 | fixed | vulnerable (no DSA, ignored) | fixed | fixed | fixed | An issue was discovered in gpac 0.8.0. An invalid memory dereference e ... |
| CVE-2020-19751 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in gpac 0.8.0. The gf_odf_del_ipmp_tool functi ... |
| CVE-2020-19750 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in gpac 0.8.0. The strdup function in box_code ... |
| CVE-2020-19488 | vulnerable | vulnerable | fixed | fixed | fixed | An issue was discovered in box_code_apple.c:119 in Gpac MP4Box 0.8.0, ... |
| CVE-2020-19481 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | fixed | fixed | fixed | An issue was discovered in GPAC before 0.8.0, as demonstrated by MP4Bo ... |
| CVE-2020-11558 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by ... |
| CVE-2020-6631 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in GPAC version 0.8.0. There is a NULL pointer ... |
| CVE-2020-6630 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in GPAC version 0.8.0. There is a NULL pointer ... |
| CVE-2019-20632 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ... |
| CVE-2019-20631 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ... |
| CVE-2019-20630 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ... |
| CVE-2019-20629 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ... |
| CVE-2019-20628 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstr ... |
| CVE-2019-20208 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | dimC_Read in isomedia/box_code_3gpp.c in GPAC 0.8.0 has a stack-based ... |
| CVE-2019-20171 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ... |
| CVE-2019-20170 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ... |
| CVE-2019-20165 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ... |
| CVE-2019-20163 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ... |
| CVE-2019-20162 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ... |
| CVE-2019-20161 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ... |
| CVE-2019-13618 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | In GPAC before 0.8.0, isomedia/isom_read.c in libgpac.a has a heap-bas ... |
| CVE-2019-12483 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in GPAC 0.7.1. There is a heap-based buffer ov ... |
| CVE-2019-12482 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in GPAC 0.7.1. There is a NULL pointer derefer ... |
| CVE-2019-12481 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in GPAC 0.7.1. There is a NULL pointer derefer ... |
| CVE-2019-11222 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | gf_bin128_parse in utils/os_divers.c in GPAC 0.7.1 has a buffer overfl ... |
| CVE-2019-11221 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | GPAC 0.7.1 has a buffer overflow issue in gf_import_message() in media ... |
| CVE-2018-21016 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | audio_sample_entry_AddBox() at isomedia/box_code_base.c in GPAC 0.7.1 ... |
| CVE-2018-21015 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | AVC_DuplicateConfig() at isomedia/avc_ext.c in GPAC 0.7.1 allows remot ... |
| Bug | Description |
|---|
| CVE-2021-32270 | An issue was discovered in gpac through 20200801. A NULL pointer deref ... |
| CVE-2021-32269 | An issue was discovered in gpac through 20200801. A NULL pointer deref ... |
| CVE-2021-31262 | The AV1_DuplicateConfig function in GPAC 1.0.1 allows attackers to cau ... |
| CVE-2021-31259 | The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allo ... |
| CVE-2021-31255 | Buffer overflow in the abst_box_read function in MP4Box in GPAC 1.0.1 ... |
| CVE-2021-31254 | Buffer overflow in the tenc_box_read function in MP4Box in GPAC 1.0.1 ... |
| CVE-2021-30199 | In filters/reframe_latm.c in GPAC 1.0.1 there is a Null Pointer Derefe ... |
| CVE-2021-30022 | There is a integer overflow in media_tools/av_parsers.c in the gf_avc_ ... |
| CVE-2021-30020 | In the function gf_hevc_read_pps_bs_internal function in media_tools/a ... |
| CVE-2021-30019 | In the adts_dmx_process function in filters/reframe_adts.c in GPAC 1.0 ... |
| CVE-2021-30015 | There is a Null Pointer Dereference in function filter_core/filter_pck ... |
| CVE-2021-29279 | There is a integer overflow in function filter_core/filter_props.c:gf_ ... |
| CVE-2021-21862 | Multiple exploitable integer truncation vulnerabilities exist within t ... |
| CVE-2021-21861 | An exploitable integer truncation vulnerability exists within the MPEG ... |
| CVE-2021-21860 | An exploitable integer truncation vulnerability exists within the MPEG ... |
| CVE-2021-21859 | An exploitable integer truncation vulnerability exists within the MPEG ... |
| CVE-2021-21858 | Multiple exploitable integer overflow vulnerabilities exist within the ... |
| CVE-2021-21857 | Multiple exploitable integer overflow vulnerabilities exist within the ... |
| CVE-2021-21856 | Multiple exploitable integer overflow vulnerabilities exist within the ... |
| CVE-2021-21855 | Multiple exploitable integer overflow vulnerabilities exist within the ... |
| CVE-2021-21854 | Multiple exploitable integer overflow vulnerabilities exist within the ... |
| CVE-2021-21853 | Multiple exploitable integer overflow vulnerabilities exist within the ... |
| CVE-2021-21851 | Multiple exploitable integer overflow vulnerabilities exist within the ... |
| CVE-2021-21850 | An exploitable integer overflow vulnerability exists within the MPEG-4 ... |
| CVE-2021-21849 | An exploitable integer overflow vulnerability exists within the MPEG-4 ... |
| CVE-2021-21848 | An exploitable integer overflow vulnerability exists within the MPEG-4 ... |
| CVE-2021-21847 | Multiple exploitable integer overflow vulnerabilities exist within the ... |
| CVE-2021-21846 | Multiple exploitable integer overflow vulnerabilities exist within the ... |
| CVE-2021-21845 | Multiple exploitable integer overflow vulnerabilities exist within the ... |
| CVE-2021-21844 | Multiple exploitable integer overflow vulnerabilities exist within the ... |
| CVE-2021-21843 | Multiple exploitable integer overflow vulnerabilities exist within the ... |
| CVE-2021-21842 | An exploitable integer overflow vulnerability exists within the MPEG-4 ... |
| CVE-2021-21841 | An exploitable integer overflow vulnerability exists within the MPEG-4 ... |
| CVE-2021-21840 | An exploitable integer overflow vulnerability exists within the MPEG-4 ... |
| CVE-2021-21839 | Multiple exploitable integer overflow vulnerabilities exist within the ... |
| CVE-2021-21838 | Multiple exploitable integer overflow vulnerabilities exist within the ... |
| CVE-2021-21837 | Multiple exploitable integer overflow vulnerabilities exist within the ... |
| CVE-2021-21836 | An exploitable integer overflow vulnerability exists within the MPEG-4 ... |
| CVE-2021-21835 | An exploitable integer overflow vulnerability exists within the MPEG-4 ... |
| CVE-2021-21834 | An exploitable integer overflow vulnerability exists within the MPEG-4 ... |
| CVE-2020-23932 | An issue was discovered in gpac before 1.0.1. A NULL pointer dereferen ... |
| CVE-2020-23931 | An issue was discovered in gpac before 1.0.1. The abst_box_read functi ... |
| CVE-2020-23930 | An issue was discovered in gpac through 20200801. A NULL pointer deref ... |
| CVE-2020-23928 | An issue was discovered in gpac before 1.0.1. The abst_box_read functi ... |
| CVE-2020-22352 | The gf_dash_segmenter_probe_input function in GPAC v0.8 allows attacke ... |
| CVE-2019-20169 | An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ... |
| CVE-2019-20168 | An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ... |
| CVE-2019-20167 | An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ... |
| CVE-2019-20166 | An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ... |
| CVE-2019-20164 | An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ... |
| CVE-2019-20160 | An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ... |
| CVE-2019-20159 | An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20 ... |
| CVE-2018-1000100 | GPAC MP4Box version 0.7.1 and earlier contains a Buffer Overflow vulne ... |
| CVE-2018-21017 | GPAC 0.7.1 has a memory leak in dinf_Read in isomedia/box_code_base.c. ... |
| CVE-2018-20763 | In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_i ... |
| CVE-2018-20762 | GPAC version 0.7.1 and earlier has a buffer overflow vulnerability in ... |
| CVE-2018-20761 | GPAC version 0.7.1 and earlier has a Buffer Overflow vulnerability in ... |
| CVE-2018-20760 | In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_i ... |
| CVE-2018-13006 | An issue was discovered in MP4Box in GPAC 0.7.1. There is a heap-based ... |
| CVE-2018-13005 | An issue was discovered in MP4Box in GPAC 0.7.1. The function urn_Read ... |
| CVE-2018-7752 | GPAC through 0.7.1 has a Buffer Overflow in the gf_media_avc_read_sps ... |