GPAC is an open source multimedia framework. gpac has a security vulnerability that stems from a null pointer dereference vulnerability in the xtra_box_write function in /box_code_base.c in GPAC 1.1.0, which can lead to a denial of service. No details of the vulnerability are currently available.