{"id":"CVE-2023-0819","summary":"Heap-based Buffer Overflow in gpac/gpac","details":"Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to v2.3.0-DEV.","modified":"2026-04-26T12:44:58.415076Z","published":"2023-02-13T00:00:00Z","database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/0xxx/CVE-2023-0819.json","cwe_ids":["CWE-122"],"unresolved_ranges":[{"extracted_events":[{"fixed":"v2.3.0-DEV"}],"source":"AFFECTED_FIELD"}],"cna_assigner":"@huntrdev"},"references":[{"type":"WEB","url":"https://huntr.dev/bounties/35793610-dccc-46c8-9f55-6a24c621e4ef"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/0xxx/CVE-2023-0819.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-0819"},{"type":"ADVISORY","url":"https://www.debian.org/security/2023/dsa-5411"},{"type":"FIX","url":"https://github.com/gpac/gpac/commit/d067ab3ccdeaa340e8c045a0fd5bcfc22b809e8f"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/gpac/gpac","events":[{"introduced":"0"},{"fixed":"d067ab3ccdeaa340e8c045a0fd5bcfc22b809e8f"}],"database_specific":{"source":"REFERENCES"}}],"versions":["v0.5.2","v0.6.0","v0.9.0","v0.9.0-preview","v1.0.0","v2.0.0","v2.2.0"],"database_specific":{"vanir_signatures":[{"signature_version":"v1","target":{"file":"src/media_tools/mpegts.c"},"id":"CVE-2023-0819-1f77ab6f","deprecated":false,"source":"https://github.com/gpac/gpac/commit/d067ab3ccdeaa340e8c045a0fd5bcfc22b809e8f","signature_type":"Line","digest":{"threshold":0.9,"line_hashes":["101111225791852464442118723732609758444","21665793122838184032779841430777574037","114567158410904373401926049963386798271"]}},{"signature_version":"v1","target":{"function":"gf_m2ts_process_tdt_tot","file":"src/media_tools/mpegts.c"},"id":"CVE-2023-0819-b00e1e6a","deprecated":false,"source":"https://github.com/gpac/gpac/commit/d067ab3ccdeaa340e8c045a0fd5bcfc22b809e8f","signature_type":"Function","digest":{"length":4109,"function_hash":"40820346777721677204492999888350508226"}}],"vanir_signatures_modified":"2026-04-26T12:44:58Z","source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-0819.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}