CVE-2018-13006

Priority
Description
An issue was discovered in MP4Box in GPAC 0.7.1. There is a heap-based
buffer over-read in the isomedia/box_dump.c function hdlr_dump.
Package
Source: gpac (LP Ubuntu Debian)
Upstream:released (0.5.0+svn5324~dfsg1-1+deb8u1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):needed
Ubuntu 16.04 LTS (Xenial Xerus):released (0.5.2-426-gc5ad4e4+dfsg5-1ubuntu0.1)
Ubuntu 18.04 LTS (Bionic Beaver):released (0.5.2-426-gc5ad4e4+dfsg5-3ubuntu0.1)
Ubuntu 18.10 (Cosmic Cuttlefish):released (0.5.2-426-gc5ad4e4+dfsg5-4ubuntu0.1)
Ubuntu 19.04 (Disco Dingo):needed
Ubuntu 19.10 (Eoan):needed
More Information

Updated: 2019-04-22 21:32:39 UTC (commit 750f6738e68600bdf0b7c7ef543b49378c330e4e)