{"id":"CVE-2023-4754","summary":"Out-of-bounds Write in gpac/gpac","details":"Out-of-bounds Write in GitHub repository gpac/gpac prior to 2.3-DEV.","modified":"2026-04-12T06:44:49.051540Z","published":"2023-09-04T08:24:38.003Z","database_specific":{"cwe_ids":["CWE-787"],"cna_assigner":"@huntrdev","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/4xxx/CVE-2023-4754.json"},"references":[{"type":"WEB","url":"https://huntr.dev/bounties/b7ed24ad-7d0b-40b7-8f4d-3c18a906620c"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/4xxx/CVE-2023-4754.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-4754"},{"type":"FIX","url":"https://github.com/gpac/gpac/commit/7e2e92feb1b30fac1d659f6620d743b5a188ffe0"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/gpac/gpac","events":[{"introduced":"0"},{"fixed":"7e2e92feb1b30fac1d659f6620d743b5a188ffe0"}]},{"type":"GIT","repo":"https://github.com/gpac/gpac","events":[{"introduced":"0"},{"fixed":"7e2e92feb1b30fac1d659f6620d743b5a188ffe0"}]}],"versions":["v0.5.2","v0.6.0","v0.9.0","v0.9.0-preview","v1.0.0","v2.0.0","v2.2.0"],"database_specific":{"vanir_signatures":[{"digest":{"threshold":0.9,"line_hashes":["50805176069477340056720615194455204411","244277134419676895393644061945096467782","147232557031716254301190205393262298597","134901834120906815481683434196904977518"]},"deprecated":false,"source":"https://github.com/gpac/gpac/commit/7e2e92feb1b30fac1d659f6620d743b5a188ffe0","target":{"file":"src/scene_manager/swf_parse.c"},"signature_type":"Line","id":"CVE-2023-4754-62db1f67","signature_version":"v1"},{"digest":{"function_hash":"82230966479074374507630753158794140479","length":3149},"deprecated":false,"source":"https://github.com/gpac/gpac/commit/7e2e92feb1b30fac1d659f6620d743b5a188ffe0","target":{"function":"swf_def_font","file":"src/scene_manager/swf_parse.c"},"signature_type":"Function","id":"CVE-2023-4754-f6861536","signature_version":"v1"}],"vanir_signatures_modified":"2026-04-12T06:44:49Z","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"2.3"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-4754.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"}]}