CVE-2022-36191

A heap-buffer-overflow had occurred in function gfisomdoviconfigget of isomedia/avcext.c:2490, as demonstrated by MP4Box. This vulnerability was fixed in commit fef6242...

GPAC null pointer dereference vulnerability (CNVD-2019-40479)

GPAC is a multimedia framework for rich media and distributed under the LGPL license. A null pointer dereference vulnerability exists in AVCDuplicateConfig in isomedia/avcext.c in GPAC 0.7.1. An attacker could exploit this vulnerability via specially crafted files to cause a denial of service...

DEBIAN-CVE-2018-21015

AVCDuplicateConfig at isomedia/avcext.c in GPAC 0.7.1 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted file. There is "cfgnew-AVCLevelIndication = cfg-AVCLevelIndication;" but cfg could be NULL...

UBUNTU-CVE-2018-21015

AVCDuplicateConfig at isomedia/avcext.c in GPAC 0.7.1 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted file. There is "cfgnew-AVCLevelIndication = cfg-AVCLevelIndication;" but cfg could be NULL...

GPAC MP4Box Buffer Overflow Vulnerability

GPAC MP4Box is an open source project GPAC provided in the multimedia wrapper . A buffer overflow vulnerability exists in the src/isomedia/avcext.c file in GPAC MP4Box 0.7.1 and earlier versions. A remote attacker can exploit this vulnerability to execute code by submitting an MP4 file...

CVE-2018-1000100

GPAC MP4Box version 0.7.1 and earlier contains a Buffer Overflow vulnerability in src/isomedia/avcext.c lines 2417 to 2420 that can result in Heap chunks being modified, this could lead to RCE. This attack appear to be exploitable via an attacker supplied MP4 file that when run by the victim may...