Ubuntu Security Update USN-7320-1: GPAC vulnerabilities

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,835
Reaction score
74
Credits
-1,257
It was discovered that the GPAC MP4Box utility incorrectly handled certain AC3 files, which could lead to an out-of-bounds read. A remote attacker could use this issue to cause MP4Box to crash, resulting in a denial of service (system crash). This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. (CVE-2023-5520, CVE-2024-0322) It was discovered that the GPAC MP4Box utility incorrectly handled certain malformed text files. If a user or automated system using MP4Box were tricked into opening a specially crafted RST file, an attacker could use this issue to cause a denial of service (system crash) or execute arbitrary code. (CVE-2024-0321)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-8348-1: GoBGP vulnerabilities
Replies
0
Views
58
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8337-1: QtSvg vulnerabilities
Replies
0
Views
67
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8282-1: Unbound vulnerabilities
Replies
0
Views
112
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8147-1: libarchive vulnerabilities
Replies
0
Views
200
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8282-2: Unbound vulnerabilities
Replies
0
Views
67
LinuxBot
LinuxBot


Follow Linux.org

Members online

Total: 3,583 (members: 9, guests: 3,574)

Latest posts

Top