Description

There is a integer overflow in function filter_core/filter_props.c:gf_props_assign_value in GPAC 1.0.1. In which, the arg const GF_PropertyValue *value,maybe value->value.data.size is a negative number. In result, memcpy in gf_props_assign_value failed.

Related CPE's

a

gpac

gpac

1.0.1

Vulnerable

References

https://github.com/gpac/gpac/commit/da69ad1f970a7e17c865eaec9af98cc84df10d5b

PatchThird Party Advisory

https://github.com/gpac/gpac/issues/1718

ExploitThird Party Advisory

Weaknesses

[email protected]

Primary
CWE-190CWE-787

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.8 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-04-19T20:15:14.287

4 years ago

Last modified

2021-04-21T19:21:03.430

4 years ago