https://vulnerability.circl.lu/sightings/feed 2026-05-28T17:32:16.897225+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/399519c2-3235-41bb-b850-e61538182e69/export 2026-05-28T17:32:17.371458+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "399519c2-3235-41bb-b850-e61538182e69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-21843", "type": "seen", "source": "https://t.me/cibsecurity/27515", "content": "\u203c CVE-2021-21843 \u203c\n\nMultiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an integer overflow due to unchecked arithmetic resulting in a heap-based buffer overflow that causes memory corruption. After validating the number of ranges, at [41] the library will multiply the count by the size of the GF_SubsegmentRangeInfo structure. On a 32-bit platform, this multiplication can result in an integer overflow causing the space of the array being allocated to be less than expected. An attacker can convince a user to open a video to trigger this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-18T16:17:05.000000Z"} 2021-08-18T16:17:05+00:00