漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
GPAC MP4Box swf_parse.c swf_def_bits_jpeg stack-based overflow
Vulnerability Description
A vulnerability was found in GPAC up to 2.5-DEV-rev2167-gcc9d617c0-master. This vulnerability affects the function swf_def_bits_jpeg of the file src/scene_manager/swf_parse.c of the component MP4Box. The manipulation of the argument szName results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been made public and could be used. The patch is identified as 8961c74f87ae3fe2d3352e622f7730ca96d50cf1. A patch should be applied to remediate this issue.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
GPAC 安全漏洞
Vulnerability Description
GPAC是GPAC开源的一款开源的多媒体框架。 GPAC 2.5-DEV-rev2167-gcc9d617c0-master及之前版本存在安全漏洞,该漏洞源于对文件src/scene_manager/swf_parse.c中参数szName的错误操作,可能导致栈缓冲区溢出。
CVSS Information
N/A
Vulnerability Type
N/A