EPSS
Percentile
37.3%
libgpac.so is vulnerable to Denial Of Service (DoS). The vulnerability exists due to the heap buffer overflow in the gf_isom_box_size function of box_funcs.c, allowing an attacker to cause an application crash.
gf_isom_box_size
box_funcs.c
github.com/advisories/GHSA-mjqc-x8q3-gphp
github.com/gpac/gpac/commit/ea7395f39f601a7750d48d606e9d10ea0b7beefe
github.com/gpac/gpac/issues/2389
huntr.dev/bounties/d06223df-a473-4c82-96d0-23726b844b21
huntr.dev/bounties/d06223df-a473-4c82-96d0-23726b844b21/
www.debian.org/security/2023/dsa-5452