Vulnerability roundup 107: gpac-1.0.1: 16 advisories [7.8]

ckauhaus commented 2 years ago

[ ] CVE-2021-32136 CVSSv3=7.8 (nixos-21.05, nixos-unstable)
[ ] CVE-2021-32271 CVSSv3=7.8 (nixos-21.05, nixos-unstable)
[ ] CVE-2021-33362 CVSSv3=7.8 (nixos-21.05, nixos-unstable)
[ ] CVE-2021-32132 CVSSv3=5.5 (nixos-21.05, nixos-unstable)
[ ] CVE-2021-32134 CVSSv3=5.5 (nixos-21.05, nixos-unstable)
[ ] CVE-2021-32135 CVSSv3=5.5 (nixos-21.05, nixos-unstable)
[ ] CVE-2021-32137 CVSSv3=5.5 (nixos-21.05, nixos-unstable)
[ ] CVE-2021-32138 CVSSv3=5.5 (nixos-21.05, nixos-unstable)
[ ] CVE-2021-32139 CVSSv3=5.5 (nixos-21.05, nixos-unstable)
[ ] CVE-2021-32269 CVSSv3=5.5 (nixos-21.05, nixos-unstable)
[ ] CVE-2021-32270 CVSSv3=5.5 (nixos-21.05, nixos-unstable)
[ ] CVE-2021-33361 CVSSv3=5.5 (nixos-21.05, nixos-unstable)
[ ] CVE-2021-33363 CVSSv3=5.5 (nixos-21.05, nixos-unstable)
[ ] CVE-2021-33364 CVSSv3=5.5 (nixos-21.05, nixos-unstable)
[ ] CVE-2021-33365 CVSSv3=5.5 (nixos-21.05, nixos-unstable)
[ ] CVE-2021-33366 CVSSv3=5.5 (nixos-21.05, nixos-unstable)

CVE details

CVE-2021-32136

Heap buffer overflow in the print_udta function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file.

CVE-2021-32271

An issue was discovered in gpac through 20200801. A stack-buffer-overflow exists in the function DumpRawUIConfig located in odf_dump.c. It allows an attacker to cause code Execution.

CVE-2021-33362

Stack buffer overflow in the hevc_parse_vps_extension function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file.

CVE-2021-32132

The abst_box_size function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.

CVE-2021-32134

The gf_odf_desc_copy function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.

CVE-2021-32135

The trak_box_size function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.

CVE-2021-32137

Heap buffer overflow in the URL_GetProtocolType function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file.

CVE-2021-32138

The DumpTrackInfo function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.

CVE-2021-32139

The gf_isom_vp_config_get function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.

CVE-2021-32269

An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function ilst_item_box_dump located in box_dump.c. It allows an attacker to cause Denial of Service.

CVE-2021-32270

An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function vwid_box_del located in box_code_base.c. It allows an attacker to cause Denial of Service.

CVE-2021-33361

Memory leak in the afra_box_read function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file.

CVE-2021-33363

Memory leak in the infe_box_read function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file.

CVE-2021-33364

Memory leak in the def_parent_box_new function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file.

CVE-2021-33365

Memory leak in the gf_isom_get_root_od function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file.

CVE-2021-33366

Memory leak in the gf_isom_oinf_read_entry function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file.

Scanned versions: nixos-21.05: 3b1789322fc; nixos-unstable: 34ad3ffe08a.

Cc @bluescreen303 Cc @mgdelacroix

ckauhaus commented 2 years ago

NixOS / nixpkgs