A heap buffer overflow in the gf_cenc_set_pssh function (isomedia/drm_sample.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.
A heap use-after-free in the gf_node_get_tag function (scenegraph/base_scenegraph.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.
A NULL pointer dereference in the TrackWriter handling component (filters/mux_isom.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.
GPAC MP4Box v2.4 was discovered to contain a floating point exception in the avidmx_process function (isomedia/isom_write.c).
A NULL pointer dereference in the gf_isom_copy_sample_info function (isomedia/isom_write.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.
Starlette: Arbitrary HTTP method dispatched to `HTTPEndpoint` attributes via `getattr`
UAParser.js: Unbounded `Sec-CH-UA-Model` parsing can trigger ReDoS in `withClientHints()`
protobufjs-cli: Code injection in pbjs static output from crafted JSON descriptor names
protobufjs: Memory amplification from preserved unknown fields in binary decode
aiohttp: Incomplete websocket frame payloads bypass memory limits
aiohttp: TLS Server Hostname Override Is Ignored When Reusing HTTPS Connections
aiohttp: Payload Response Resources Are Not Closed After Mid-Body Disconnect
aiohttp: HTTP/1 Pipelined Requests Queue Without Limit
aiohttp: Unread Compressed Request Bodies Bypass client_max_size During Cleanup
aiohttp: C HTTP Parser Bypasses max_line_size for Fragmented Lines
aiohttp: DigestAuthMiddleware Applies Credentials to Cross-Origin Redirect Challenges
aiohttp: Host-Only Cookies Become Domain Cookies After CookieJar Persistence
aiohttp: CRLF injection in multipart headers
React Router: Potential CSRF via PUT/PATCH/DELETE document requests
Vitest Browser: Exposed Browser Mode API Can Proxy CDP and Overwrite Config Files, Leading to RCE