CVE-2022-36190

GPAC mp4box 2.1-DEV-revUNKNOWN-master has a use-after-free vulnerability in function gf_isom_dovi_config_get. This vulnerability was fixed in commit fef6242.
References
Link Resource
https://github.com/gpac/gpac/issues/2220 Exploit Issue Tracking Patch Third Party Advisory
https://www.debian.org/security/2023/dsa-5411
Configurations

Configuration 1 (hide)

cpe:2.3:a:gpac:gpac:*:*:*:*:*:*:*:*

History

27 May 2023, 04:15

Type Values Removed Values Added
References
  • (DEBIAN) https://www.debian.org/security/2023/dsa-5411 -

05 May 2023, 19:41

Type Values Removed Values Added
CPE cpe:2.3:a:gpac:gpac:2.1:dev:*:*:*:*:*:* cpe:2.3:a:gpac:gpac:*:*:*:*:*:*:*:*

18 Aug 2022, 19:49

Type Values Removed Values Added
References (MISC) https://github.com/gpac/gpac/issues/2220 - (MISC) https://github.com/gpac/gpac/issues/2220 - Exploit, Issue Tracking, Patch, Third Party Advisory
CPE cpe:2.3:a:gpac:gpac:2.1:dev:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
CWE CWE-416

17 Aug 2022, 15:39

Type Values Removed Values Added
New CVE

Information

Published : 2022-08-17 15:15

Updated : 2024-02-04 22:51


NVD link : CVE-2022-36190

Mitre link : CVE-2022-36190

CVE.ORG link : CVE-2022-36190


JSON object : View

Products Affected

gpac

  • gpac
CWE
CWE-416

Use After Free