PT-2026-43373

A security flaw has been discovered in GPAC up to 2.4.0. Affected is the function MergeFragment of the file src/isomedia/isom intern.c of the component MP4Box. The manipulation results in null pointer dereference. The attack needs to be approached locally. The exploit has been released to the...

Heap Buffer Overflow

libgpac.so is vulnerable to heap-based buffer overflow. The vulnerability is due to the FixSDTPInTRAF function in isomintern.c which allows an attacker to send a crafted file in to the system command causing an application crash...

CVE-2022-43042

GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a heap buffer overflow via the function FixSDTPInTRAF at isomedia/isomintern.c...

DEBIAN-CVE-2022-43042

GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a heap buffer overflow via the function FixSDTPInTRAF at isomedia/isomintern.c...

Heap overflow

GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a heap buffer overflow via the function FixSDTPInTRAF at isomedia/isomintern.c...

CVE-2022-43042

CVE-2022-43042 affects GPAC in the 2.1-DEV-rev368-gfd054169b-master line, with a heap buffer overflow in FixSDTPInTRAF (isomedia/isom_intern.c). CVSS v3.1: 7.8 (HIGH) with LOCAL attack vector, no privileges required, user interaction required. Affected? GPAC 2.1-DEV-builds as cited. Impact includ...

CVE-2020-22674

An issue was discovered in gpac 0.8.0. An invalid memory dereference exists in the function FixTrackID located in isomintern.c, which allows attackers to cause a denial of service DoS via a crafted input...