CVE-2022-3957

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-3957

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-3957.json

Related

DSA-5411-1

Published

2022-11-11T16:15:16Z

Modified

2023-11-29T09:51:02.357717Z

Details

A vulnerability classified as problematic was found in GPAC. Affected by this vulnerability is the function svgparsepreserveaspectratio of the file scenegraph/svg_attributes.c of the component SVG Parser. The manipulation leads to memory leak. The attack can be launched remotely. The name of the patch is 2191e66aa7df750e8ef01781b1930bea87b713bb. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-213463.

References

Affected packages

Git / github.com/gpac/gpac

Affected ranges

Type: GIT
Repo: https://github.com/gpac/gpac
Events: Introduced

0The exact introduced commit is unknown

Fixed

2191e66aa7df750e8ef01781b1930bea87b713bb

Affected versions

v0.*

v0.5.2

v0.6.0

v0.6.1

v0.7.0

v0.7.1

v0.8.0

v0.9.0

v0.9.0-preview

v1.*

v1.0.0

v1.0.1

v2.*

v2.0.0