Vulnerability Database
Blog
FAQ
Docs
UBUNTU-CVE-2023-2838
See a problem?
Please try reporting it
to the source
first.
Source
https://ubuntu.com/security/CVE-2023-2838
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-2838.json
JSON Data
https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2023-2838
Related
CVE-2023-2838
Published
2023-05-22T18:15:00Z
Modified
2024-12-18T16:32:55Z
Severity
9.1 (Critical)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
CVSS Calculator
Summary
[none]
Details
Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.2.2.
References
https://ubuntu.com/security/CVE-2023-2838
https://huntr.dev/bounties/711e0988-5345-4c01-a2fe-1179604dd07f/
https://github.com/gpac/gpac/commit/c88df2e202efad214c25b4e586f243b2038779ba
https://huntr.dev/bounties/711e0988-5345-4c01-a2fe-1179604dd07f
https://www.cve.org/CVERecord?id=CVE-2023-2838
Affected packages
Ubuntu:Pro:14.04:LTS
/
gpac
Package
Name
gpac
Purl
pkg:deb/ubuntu/gpac?arch=src?distro=esm-infra-legacy/trusty
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Affected versions
0.*
0.5.0+svn4288~dfsg1-1ubuntu1
0.5.0+svn4288~dfsg1-4
0.5.0+svn4288~dfsg1-4ubuntu1
0.5.0+svn4288~dfsg1-4ubuntu1+esm1
Ecosystem specific
{ "ubuntu_priority": "medium" }
Ubuntu:Pro:16.04:LTS
/
gpac
Package
Name
gpac
Purl
pkg:deb/ubuntu/gpac?arch=src?distro=esm-apps/xenial
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Affected versions
0.*
0.5.2-426-gc5ad4e4+dfsg5-1build1
0.5.2-426-gc5ad4e4+dfsg5-1ubuntu0.1
Ecosystem specific
{ "ubuntu_priority": "medium" }
Ubuntu:Pro:18.04:LTS
/
gpac
Package
Name
gpac
Purl
pkg:deb/ubuntu/gpac?arch=src?distro=esm-apps/bionic
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Affected versions
0.*
0.5.2-426-gc5ad4e4+dfsg5-3
0.5.2-426-gc5ad4e4+dfsg5-3ubuntu0.1
Ecosystem specific
{ "ubuntu_priority": "medium" }
Ubuntu:20.04:LTS
/
gpac
Package
Name
gpac
Purl
pkg:deb/ubuntu/gpac?arch=src?distro=focal
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Affected versions
0.*
0.5.2-426-gc5ad4e4+dfsg5-4ubuntu1
0.5.2-426-gc5ad4e4+dfsg5-5
Ecosystem specific
{ "ubuntu_priority": "medium" }
Ubuntu:22.04:LTS
/
gpac
Package
Name
gpac
Purl
pkg:deb/ubuntu/gpac?arch=src?distro=jammy
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Affected versions
1.*
1.0.1+dfsg1-4
1.0.1+dfsg1-5
2.*
2.0.0+dfsg1-2
Ecosystem specific
{ "ubuntu_priority": "medium" }
Ubuntu:24.04:LTS
/
gpac
Package
Name
gpac
Purl
pkg:deb/ubuntu/gpac?arch=src?distro=noble
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Affected versions
2.*
2.2.1+dfsg1-3
2.2.1+dfsg1-3.1
2.2.1+dfsg1-3.1build1
2.2.1+dfsg1-3.1build2
Ecosystem specific
{ "ubuntu_priority": "medium" }
UBUNTU-CVE-2023-2838 - OSV