USN-3926-1: GPAC vulnerabilities
USN-3926-1: GPAC vulnerabilities gpac vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 18.10 Ubuntu 18.04 LTS Ubuntu 16.04 LTS Summary GPAC could be made to crash or run programs as your login if it opened a specially crafted file. Software Description gpac – GPAC Project on Advanced Content Details It was discovered that the GPAC MP4Box utility incorrectly handled certain memory operations. If an user or automated system were tricked into opening a specially crafted MP4 file, a remote attacker could use this issue to cause MP4Box to crash, resulting in a denial of service, or possibly execute arbitrary code. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 18.10 gpac – 0.5.2-426-gc5ad4e4+dfsg5-4ubuntu0.1 gpac-modules-base – 0.5.2-426-gc5ad4e4+dfsg5-4ubuntu0.1 libgpac4 – 0.5.2-426-gc5ad4e4+dfsg5-4ubuntu0.1 Ubuntu 18.04 LTS gpac – 0.5.2-426-gc5ad4e4+dfsg5-3ubuntu0.1 gpac-modules-base – [ more… ]
