PT-2022-7433 · Gpac+2 · Gpac+2

0Xdd96

Published

2018-12-19

Updated

2024-08-08

CVE-2022-38530

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions GPAC version 2.1-DEV-rev232-gfcaa01ebb-master

Description The issue is related to a stack overflow when processing ISOM IOD, which can be exploited to cause a denial of service. It is also described as a buffer overflow vulnerability in the ISOM IOD component of the GPAC multimedia platform.

Recommendations For GPAC version 2.1-DEV-rev232-gfcaa01ebb-master, as a temporary workaround, consider disabling the processing of ISOM IOD to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

ALT-PU-2018-2923

BDU:2024-06191

CVE-2022-38530

DSA-5411-1

Affected Products

Alt Linux

Gpac

Red Os

PT-2022-7433 · Gpac+2 · Gpac+2

CVE-2022-38530

Weakness Enumeration

Related Identifiers

Affected Products

References · 17