3 matches found
CVE-2026-27821 GPAC NHML Demuxer (dmx_nhml.c) Vulnerable to Stack Buffer Overflow
GPAC is an open-source multimedia framework. In versions up to and including 26.02.0, a stack buffer overflow occurs during NHML file parsing in src/filters/dmxnhml.c. The value of the xmlHeaderEnd XML attribute is copied from att-value into szXmlHeaderEnd1000 using strcpy without any length...
CVE-2026-27821 GPAC NHML Demuxer (dmx_nhml.c) Vulnerable to Stack Buffer Overflow
GPAC is an open-source multimedia framework. In versions up to and including 26.02.0, a stack buffer overflow occurs during NHML file parsing in src/filters/dmxnhml.c. The value of the xmlHeaderEnd XML attribute is copied from att-value into szXmlHeaderEnd1000 using strcpy without any length...
CVE-2026-27821
GPAC has a stack-based overflow in NHML demuxer (dmx_nhml.c) affecting versions up to 26.02.0. The parser copies the xmlHeaderEnd attribute into a 1000-byte buffer with strcpy(), enabling overflow if input exceeds 1000 bytes. A fix is available via commit 9bd7137fded2db40de61a2cf3045812c8741ec52....