GPAC is an open source multimedia framework. Version v1.0.1 of GPAC has a security vulnerability that stems from a heap-based buffer overflow vulnerability in the gf_isom_dovi_config_get function of MP4Box, which could be exploited by an attacker to cause a denial of service or execute arbitrary code via a crafted file.