PT-2023-9310 · Gpac+2 · Gpac+2

Qianshuidewajueji

Publicado

2023-02-15

Atualizado

2024-08-08

CVE-2023-0841

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions GPAC version 2.3-DEV-rev40-g3602a5ded

Description A critical issue has been found in the mp3 dmx process function of the file filters/reframe mp3.c, which leads to a heap-based buffer overflow. The attack may be initiated remotely.

Recommendations As a temporary workaround, consider disabling the mp3 dmx process function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Heap Based Buffer Overflow

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-122CWE-787

Identificadores relacionados

BDU:2024-06196

CVE-2023-0841

GHSA-W52X-CP47-XHHW

Produtos afetados

Debian

Gpac

Red Os

PT-2023-9310 · Gpac+2 · Gpac+2

CVE-2023-0841

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 20