Bug#940882: gpac: CVE-2018-21015 CVE-2018-21016

[Salvatore Bonaccorso <carnil@debian.org>]

Source: gpac
Version: 0.5.2-426-gc5ad4e4+dfsg5-5
Severity: important
Tags: security upstream
Control: found -1 0.5.2-426-gc5ad4e4+dfsg5-3+deb9u1
Control: found -1 0.5.2-426-gc5ad4e4+dfsg5-3

Hi,

The following vulnerabilities were published for gpac.

CVE-2018-21015[0]:
| AVC_DuplicateConfig() at isomedia/avc_ext.c in GPAC 0.7.1 allows
| remote attackers to cause a denial of service (NULL pointer
| dereference and application crash) via a crafted file. There is
| "cfg_new->AVCLevelIndication = cfg->AVCLevelIndication;" but cfg
| could be NULL.


CVE-2018-21016[1]:
| audio_sample_entry_AddBox() at isomedia/box_code_base.c in GPAC 0.7.1
| allows remote attackers to cause a denial of service (heap-based
| buffer over-read and application crash) via a crafted file.


If you fix the vulnerabilities please also make sure to include the
CVE (Common Vulnerabilities & Exposures) ids in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2018-21015
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21015
    https://github.com/gpac/gpac/issues/1179
    https://github.com/gpac/gpac/commit/0545bb0a01bfac6764c43bd5074e9c2d1eae495f
[1] https://security-tracker.debian.org/tracker/CVE-2018-21016
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21016
    https://github.com/gpac/gpac/issues/1180
    https://github.com/gpac/gpac/commit/ea13945f3c2dc2c21e30e2731bf2782384307a13

Regards,
Salvatore