{"id":"CVE-2022-1222","summary":"Inf loop in gpac/gpac","details":"Inf loop in GitHub repository gpac/gpac prior to 2.1.0-DEV.","modified":"2026-02-24T11:42:18.941931Z","published":"2022-04-04T00:00:00Z","database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/1xxx/CVE-2022-1222.json","cwe_ids":["CWE-835"],"cna_assigner":"@huntrdev"},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/1xxx/CVE-2022-1222.json"},{"type":"FIX","url":"https://github.com/gpac/gpac/commit/7f060bbb72966cae80d6fee338d0b07fa3fc06e1"},{"type":"WEB","url":"https://huntr.dev/bounties/f8cb85b8-7ff3-47f1-a9a6-7080eb371a3d"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1222"},{"type":"ADVISORY","url":"https://www.debian.org/security/2023/dsa-5411"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/gpac/gpac","events":[{"introduced":"0"},{"fixed":"7f060bbb72966cae80d6fee338d0b07fa3fc06e1"}]}],"versions":["v0.5.2","v0.6.0","v0.6.1","v0.7.0","v0.7.1","v0.8.0","v0.9.0","v0.9.0-preview","v1.0.0","v1.0.1","v2.0.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-1222.json","vanir_signatures":[{"digest":{"threshold":0.9,"line_hashes":["228768195906408724410010901914893115520","6187555653558856108682399045656600631","99851407371964480273695803023923397908","186002616322204377167236151897793462874","177878006385274698211399975813847375062","309219802961931587212016025214802468705","338861359567388539688820990082648248538","55010987362414529992762518570429904169","339674146534792654710555344198030439054","25047155346524489241721512635467699974","59528331048647402708263191431746018548","235044447568605019413989074843784401","228322013046542993544060200527610672867","126231519562876301732360886341924359872","120142921282468425897051826110067173036"]},"source":"https://github.com/gpac/gpac/commit/7f060bbb72966cae80d6fee338d0b07fa3fc06e1","deprecated":false,"target":{"file":"src/media_tools/avilib.c"},"signature_type":"Line","signature_version":"v1","id":"CVE-2022-1222-2ae75374"},{"digest":{"function_hash":"162913267425689890018927418954596366530","length":25110},"source":"https://github.com/gpac/gpac/commit/7f060bbb72966cae80d6fee338d0b07fa3fc06e1","deprecated":false,"target":{"file":"src/media_tools/avilib.c","function":"avi_parse_input_file"},"signature_type":"Function","signature_version":"v1","id":"CVE-2022-1222-3d0ea4c7"}]}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}]}