Candidate: CVE-2022-24576
PublicDate: 2022-03-14 14:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24576
 https://github.com/gpac/gpac/issues/2061
 https://huntr.dev/bounties/011ac07c-6139-4f43-b745-424143e60ac7/
 https://github.com/gpac/gpac/commit/96699aabae042f8f55cf8a85fa5758e3db752bae (v2.0.0)
Description:
 GPAC 1.0.1 is affected by Use After Free through MP4Box.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H [5.5 MEDIUM]


Patches_gpac:
upstream_gpac: released (2.0.0+dfsg1-2)
trusty/esm_gpac: needs-triage
trusty_gpac: ignored (out of standard support)
xenial_gpac: ignored (out of standard support)
bionic_gpac: needs-triage
focal_gpac: needs-triage
impish_gpac: needs-triage
jammy_gpac: needs-triage
devel_gpac: needs-triage