CVE-2020-35979

Sažetak

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is heap-based buffer overflow in the function gp_rtp_builder_do_avc() in ietf/rtp_pck_mpeg4.c.

Reference

https://github.com/gpac/gpac/issues/1662
https://github.com/gpac/gpac/commit/b15020f54aff24aaeb64b80771472be8e64a7adc

CVSS

Base:	6.8
Impact:	6.4
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

23-04-2021 - 19:53

Objavljeno

21-04-2021 - 16:15