An issue exists in libgpac.a in GPAC prior to 0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer over-read in BS_ReadByte (called from gf_bs_read_bit) in utils/bitstream.c that can cause a denial of service via a crafted MP4 file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gpac gpac |