CVE-2026-9572

A security vulnerability has been detected in GPAC up to 2.4.0. Affected by this issue is the function MediaGetSample of the file src/isomedia/media.c of the component MP4Box. Such manipulation of the argument cat leads to memory leak. The attack can only be performed from a local environment. Th...

CVE-2026-9572 GPAC MP4Box media.c Media_GetSample memory leak

A security vulnerability has been detected in GPAC up to 2.4.0. Affected by this issue is the function MediaGetSample of the file src/isomedia/media.c of the component MP4Box. Such manipulation of the argument cat leads to memory leak. The attack can only be performed from a local environment. Th...

CVE-2026-32739

libheif is a HEIF and AVIF file format decoder and encoder. In versions 1.21.2 and below, a crafted 800-byte HEIF sequence file causes an infinite loop in Boxstts::getsampleduration, consuming 100% CPU indefinitely with zero progress, leading to DoS. The loop has no iteration limit or timeout and...

libheif 安全漏洞

LibHEIF is a open-source decoder and encoder for the ISO/IEC 23008-12:2017 HEIF file format developed by Struktur. Versions of LibHEIF prior to 1.21.2 contain a security vulnerability. This vulnerability stems from an infinite loop in Boxstts::getsampleduration, which consumes 100% of the CPU...

CVE-2022-27145

GPAC mp4box 1.1.0-DEV-rev1727-g8be34973d-master has a stack-overflow vulnerability in function gfisomgetsampleformovietime of mp4box...

DEBIAN-CVE-2022-47662

GPAC MP4Box 2.1-DEV-rev649-ga8f438d20 has a segment fault /stack overflow due to infinite recursion in MediaGetSample isomedia/media.c:662...

UBUNTU-CVE-2022-47662

GPAC MP4Box 2.1-DEV-rev649-ga8f438d20 has a segment fault /stack overflow due to infinite recursion in MediaGetSample isomedia/media.c:662...

CVE-2022-27145

GPAC mp4box 1.1.0-DEV-rev1727-g8be34973d-master has a stack-overflow vulnerability in function gfisomgetsampleformovietime of mp4box...

UBUNTU-CVE-2022-27145

GPAC mp4box 1.1.0-DEV-rev1727-g8be34973d-master has a stack-overflow vulnerability in function gfisomgetsampleformovietime of mp4box...

DEBIAN-CVE-2020-23269

An issue was discovered in gpac 0.8.0. The stblGetSampleSize function in isomedia/stblread.c has a heap-based buffer overflow which can lead to a denial of service DOS via a crafted media file...

PT-2021-6552 · Faad2 +4 · Faad2 +4

Name of the Vulnerable Software and Affected Versions: faad2 versions through 2.10.0 Description: An issue exists in the function get sample located in output.c, which allows an attacker to cause Denial of Service due to a NULL pointer dereference. This can be exploited by a remote attacker to...

PT-2022-18247 · Unknown +1 · Gpac Mp4Box +1

Name of the Vulnerable Software and Affected Versions: GPAC mp4box version 1.1.0-DEV-rev1727-g8be34973d-master Description: The issue is a stack-overflow vulnerability in the gf isom get sample for movie time function of mp4box. Recommendations: For GPAC mp4box version...

DEBIAN-CVE-2018-18194

An issue was discovered in libgig 4.1.0. There is a heap-based buffer over-read in DLS::Region::GetSample in DLS.cpp...

UBUNTU-CVE-2017-14640

A NULL pointer dereference was discovered in AP4AtomSampleTable::GetSample in Core/Ap4AtomSampleTable.cpp in Bento4 version 1.5.0-617. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service...

UBUNTU-CVE-2017-14257

In the SDK in Bento4 1.5.0-616, AP4AtomSampleTable::GetSample in Core/Ap4AtomSampleTable.cpp contains a Read Memory Access Violation vulnerability. It is possible to exploit this vulnerability by opening a crafted .MP4 file...