Advisories » MGASA-2025-0090

Updated gpac packages fix security vulnerabilities

Publication date: 08 Mar 2025
Modification date: 08 Mar 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2023-5520 , CVE-2024-0321 , CVE-2024-0322

Description

Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.2.2.
(CVE-2023-5520)
Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to
2.3-DEV. (CVE-2024-0321)
Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.3-DEV.
(CVE-2024-0322)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=34071
• https://ubuntu.com/security/notices/USN-7320-1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5520
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0321
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0322

SRPMS

9/tainted

• gpac-2.2.1-1.2.mga9.tainted