{"id":"CVE-2022-1441","details":"MP4Box is a component of GPAC-2.0.0, which is a widely-used third-party package on RPM Fusion. When MP4Box tries to parse a MP4 file, it calls the function `diST_box_read()` to read from video. In this function, it allocates a buffer `str` with fixed length. However, content read from `bs` is controllable by user, so is the length, which causes a buffer overflow.","modified":"2026-04-12T09:22:11.039921Z","published":"2022-04-25T17:15:36.547Z","references":[{"type":"ADVISORY","url":"https://www.debian.org/security/2023/dsa-5411"},{"type":"REPORT","url":"https://github.com/gpac/gpac/issues/2175"},{"type":"FIX","url":"https://github.com/gpac/gpac/commit/3dbe11b37d65c8472faf0654410068e5500b3adb"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/gpac/gpac","events":[{"introduced":"0"},{"last_affected":"418db4149af78773815b5f6a7030a120037ba140"},{"fixed":"3dbe11b37d65c8472faf0654410068e5500b3adb"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2.0.0"}]}}],"versions":["v0.5.2","v0.6.0","v0.9.0","v0.9.0-preview","v1.0.0","v2.0.0"],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"11.0"}]}],"vanir_signatures_modified":"2026-04-12T09:22:11Z","source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-1441.json","vanir_signatures":[{"id":"CVE-2022-1441-5182d9a9","target":{"file":"src/isomedia/box_code_3gpp.c"},"source":"https://github.com/gpac/gpac/commit/3dbe11b37d65c8472faf0654410068e5500b3adb","signature_version":"v1","signature_type":"Line","deprecated":false,"digest":{"line_hashes":["44897598656335622251864563474618727529","74676244605543209251356328879308876131","209487627963969003683465613797552657734","181789870713227207800590551776769138890","46047871196308465926949462385053721512","155515540128536217015285225239489335676","139629543009130235920786115429859115469","219428159513859071163693712510745714203","261277137494029647098211910788802170554","180723747942048975850327907178299807350","270496145043382125231193973637642546901","263763921846525544194970054770287773084","191248662369945428291092309020684624141","144662079547371800733043166768316851892","146044525011670718420397489341820271258"],"threshold":0.9}},{"id":"CVE-2022-1441-e7d5fe36","target":{"function":"diST_box_read","file":"src/isomedia/box_code_3gpp.c"},"source":"https://github.com/gpac/gpac/commit/3dbe11b37d65c8472faf0654410068e5500b3adb","signature_version":"v1","signature_type":"Function","deprecated":false,"digest":{"function_hash":"185730880086337698894755163184647874134","length":323}}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}