GPAC is an open source multimedia framework. GPAC 2.0.0 suffers from a buffer overflow vulnerability that stems from abuse of the Unicode utf8_wcslen (renamed gf_utf8_wcslen) function in utils/utf.c. An attacker could exploit this vulnerability to cause a heap-based buffer over read.