Published: 15/02/2023 Updated: 17/05/2024

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 0

A vulnerability, which was classified as critical, has been found in GPAC 2.3-DEV-rev40-g3602a5ded. This issue affects the function mp3_dmx_process of the file filters/reframe_mp3.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-221087.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gpac gpac 2.3-dev-rev40-g3602a5ded

Debian Bug report logs - #1034890 gpac: CVE-2023-0841 Package: src:gpac; Maintainer for src:gpac is Debian Multimedia Maintainers <debian-multimedia@listsdebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Wed, 26 Apr 2023 17:45:02 UTC Severity: normal Tags: security, upstream Reply or subscrib ...

Debian Bug report logs - #1033116 gpac: CVE-2022-3222 CVE-2023-0866 CVE-2022-4202 CVE-2022-43039 CVE-2023-23143 CVE-2023-23144 CVE-2023-23145 CVE-2022-43040 CVE-2022-43042 CVE-2022-43043 CVE-2022-43044 CVE-2022-43045 CVE-2022-45202 CVE-2022-45283 CVE-2022-45343 CVE-2022-46489 CVE-2022-46490 CVE-2022-47086 CVE-2022-47087 CVE-2022-47088 CVE-2022-470 ...

Debian Bug report logs - #1034187 gpac: CVE-2023-0841 CVE-2023-1448 CVE-2023-1449 CVE-2023-1452 CVE-2023-1654 CVE-2023-1655 Package: src:gpac; Maintainer for src:gpac is Debian Multimedia Maintainers <debian-multimedia@listsdebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Mon, 10 Apr 2023 17:48:01 ...

CWE-787 https://vuldb.com/?id.221087 https://github.com/qianshuidewajueji/poc/blob/main/gpac/mp3_dmx_process_poc3 https://vuldb.com/?ctiid.221087 https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034890

CVE-2023-0841

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect