CVE-2022-122204.04.2022, 10:15Inf loop in GitHub repository gpac/gpac prior to 2.1.0-DEV.Infinite LoopEnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST5.5 MEDIUMLOCALLOWNONECVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H@huntrdevCNA4 MEDIUMLOCALLOWNONECVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LCVEADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 16%VendorProductVersiongpacgpac𝑥≤ 2.0𝑥= Vulnerable software versionsDebian ReleasesDebian ProductCodenamegpacbullseye (security)1.0.1+dfsg1-4+deb11u3fixedbullseye1.0.1+dfsg1-4+deb11u3fixedUbuntu ReleasesUbuntu ProductCodenamegpacnobleneeds-triagemanticdnelunarignoredkineticignoredjammyneeds-triageimpishignoredfocalneeds-triagebionicneeds-triagexenialneeds-triagetrustyneeds-triageKnown Exploits!https://huntr.dev/bounties/f8cb85b8-7ff3-47f1-a9a6-7080eb371a3dhttps://huntr.dev/bounties/f8cb85b8-7ff3-47f1-a9a6-7080eb371a3dCommon Weakness EnumerationCWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')The program contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.Referenceshttps://github.com/gpac/gpac/commit/7f060bbb72966cae80d6fee338d0b07fa3fc06e1https://huntr.dev/bounties/f8cb85b8-7ff3-47f1-a9a6-7080eb371a3dhttps://www.debian.org/security/2023/dsa-5411https://github.com/gpac/gpac/commit/7f060bbb72966cae80d6fee338d0b07fa3fc06e1https://huntr.dev/bounties/f8cb85b8-7ff3-47f1-a9a6-7080eb371a3dhttps://www.debian.org/security/2023/dsa-5411
