Buffer Overflow Affecting gpac package, versions <1.0.1+dfsg1-4+deb11u2
Threat Intelligence
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-DEBIAN11-GPAC-3364231
- published 18 Mar 2023
- disclosed 17 Mar 2023
Introduced: 17 Mar 2023
CVE-2023-1452 Open this link in a new tabHow to fix?
Upgrade Debian:11 gpac to version 1.0.1+dfsg1-4+deb11u2 or higher.
NVD Description
Note: Versions mentioned in the description apply only to the upstream gpac package and not the gpac package as distributed by Debian.
See How to fix? for Debian:11 relevant fixed versions and status.
A vulnerability was found in GPAC 2.3-DEV-rev35-gbbca86917-master. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file filters/load_text.c. The manipulation leads to buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. The identifier VDB-223297 was assigned to this vulnerability.