{"id":"CVE-2022-2549","summary":"NULL Pointer Dereference in gpac/gpac","details":"NULL Pointer Dereference in GitHub repository gpac/gpac prior to v2.1.0-DEV.","modified":"2026-04-11T22:01:32.729414Z","published":"2022-07-27T14:51:57Z","database_specific":{"cna_assigner":"@huntrdev","cwe_ids":["CWE-476"],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/2xxx/CVE-2022-2549.json"},"references":[{"type":"WEB","url":"https://huntr.dev/bounties/c93083dc-177c-4ba0-ba83-9d7fb29a5537"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/2xxx/CVE-2022-2549.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-2549"},{"type":"FIX","url":"https://github.com/gpac/gpac/commit/0102c5d4db7fdbf08b5b591b2a6264de33867a07"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/gpac/gpac","events":[{"introduced":"0"},{"last_affected":"418db4149af78773815b5f6a7030a120037ba140"},{"fixed":"0102c5d4db7fdbf08b5b591b2a6264de33867a07"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2.0.0"}]}}],"versions":["v0.5.2","v0.6.0","v0.9.0","v0.9.0-preview","v1.0.0","v2.0.0"],"database_specific":{"vanir_signatures_modified":"2026-04-11T22:01:32Z","vanir_signatures":[{"target":{"file":"src/scene_manager/scene_dump.c","function":"gf_dump_vrml_simple_field"},"source":"https://github.com/gpac/gpac/commit/0102c5d4db7fdbf08b5b591b2a6264de33867a07","id":"CVE-2022-2549-5958b69c","deprecated":false,"signature_type":"Function","signature_version":"v1","digest":{"function_hash":"319808559246905638536490630676940514194","length":1430}},{"target":{"file":"src/scene_manager/scene_dump.c","function":"gf_dump_vrml_dyn_field"},"source":"https://github.com/gpac/gpac/commit/0102c5d4db7fdbf08b5b591b2a6264de33867a07","id":"CVE-2022-2549-5de0364d","deprecated":false,"signature_type":"Function","signature_version":"v1","digest":{"function_hash":"265081539178627406689242061382817387536","length":4928}},{"target":{"file":"src/scene_manager/scene_dump.c","function":"gf_dump_vrml_field"},"source":"https://github.com/gpac/gpac/commit/0102c5d4db7fdbf08b5b591b2a6264de33867a07","id":"CVE-2022-2549-73239604","deprecated":false,"signature_type":"Function","signature_version":"v1","digest":{"function_hash":"42371816117763782081613487598368660475","length":4185}},{"target":{"file":"src/scene_manager/scene_dump.c","function":"gf_dump_vrml_proto_field"},"source":"https://github.com/gpac/gpac/commit/0102c5d4db7fdbf08b5b591b2a6264de33867a07","id":"CVE-2022-2549-826b1e65","deprecated":false,"signature_type":"Function","signature_version":"v1","digest":{"function_hash":"151663867179569858897320721376271864179","length":2106}},{"target":{"file":"src/scene_manager/scene_dump.c"},"source":"https://github.com/gpac/gpac/commit/0102c5d4db7fdbf08b5b591b2a6264de33867a07","id":"CVE-2022-2549-b8cd2d4a","deprecated":false,"signature_type":"Line","signature_version":"v1","digest":{"threshold":0.9,"line_hashes":["52829072956018198408310979581780984288","323116907854605321682796640994274569177","195982439084795416726487608519419073333","31229122324708265926205112182120448377","294129165205986739156175378686343492573","219563346670804760279535056558572002220","213726257641456048474995236784813891349","162497244447796378758710795885546992752","125377727122015290653366838615732309864","40494980447820218286866883254827182968","278451950698327342588459286460467796678","223170439410546196005359687419064343834","220623163461148457869292812824886206108","263540493063410647902422331764288992566","190791043185236225897303653109381514223","253880010888262773094825354463098823587","230825517981431661199949112458403717750","313000039947659406020583318071207201804","33116714055116032487432290708454025316","286486591851774162779346980001701209024","230825517981431661199949112458403717750","118321403264893300825247636905097097438","140075342754359384587165526982750268372","33427752422121259958900055846481895041","79285273182164713471917128885580760160","230825517981431661199949112458403717750","81710635815151015115942829826610345931","261378022050310119569744986480538327573","328424407412578936235567459539374631463","267830205445514676657333465456405979570","120969732748109053185157051002259502957"]}}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-2549.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H"}]}