MP4Box is a component of GPAC-2.0.0, which is a widely-used third-party package on RPM Fusion. When MP4Box tries to parse a MP4 file, it calls the function `diST_box_read()` to read from video. In this function, it allocates a buffer `str` with fixed length. However, content read from `bs` is controllable by user, so is the length, which causes a buffer overflow.
References
Link | Resource |
---|---|
https://github.com/gpac/gpac/commit/3dbe11b37d65c8472faf0654410068e5500b3adb | Patch Third Party Advisory |
https://github.com/gpac/gpac/issues/2175 | Exploit Issue Tracking Third Party Advisory |
https://www.debian.org/security/2023/dsa-5411 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2022-04-25T00:00:00
Updated: 2023-05-27T00:00:00
Reserved: 2022-04-22T00:00:00
Link: CVE-2022-1441
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-04-25T17:15:36.547
Modified: 2023-06-27T20:43:05.850
Link: CVE-2022-1441
JSON object: View
Redhat Information
No data.