CVE-2018-21017

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2018-21017
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-21017.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2018-21017
Downstream
Published
2019-09-16T13:15:11.573Z
Modified
2026-03-15T21:55:53.184231Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

GPAC 0.7.1 has a memory leak in dinfRead in isomedia/boxcode_base.c.

References

Affected packages

Git / github.com/gpac/gpac

Affected ranges

Type
GIT
Repo
https://github.com/gpac/gpac
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
440d475f133038824dab08292b2e592ecd0e10b4
Fixed
d2371b4b204f0a3c0af51ad4e9b491144dd1225c
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "0.7.1"
        }
    ]
}

Affected versions

v0.*
v0.5.2
v0.6.0
v0.6.1
v0.7.0
v0.7.1

Database specific

vanir_signatures 
[
    {
        "digest": {
            "length": 367.0,
            "function_hash": "120426176005110921420384699184860952357"
        },
        "signature_version": "v1",
        "deprecated": false,
        "signature_type": "Function",
        "id": "CVE-2018-21017-5de569f8",
        "target": {
            "function": "dinf_Read",
            "file": "src/isomedia/box_code_base.c"
        },
        "source": "https://github.com/gpac/gpac/commit/d2371b4b204f0a3c0af51ad4e9b491144dd1225c"
    },
    {
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "66005243567388073231271766296561475105",
                "249075841994256019626386267827609271329",
                "136759013577292430968900763692195784319",
                "192612450746288974658982425811600669047",
                "30507658557005493878443311117005987203",
                "73092668258400968164296190131390534071"
            ]
        },
        "signature_version": "v1",
        "deprecated": false,
        "signature_type": "Line",
        "id": "CVE-2018-21017-be8e65ea",
        "target": {
            "file": "src/isomedia/box_code_base.c"
        },
        "source": "https://github.com/gpac/gpac/commit/d2371b4b204f0a3c0af51ad4e9b491144dd1225c"
    }
]
source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-21017.json"