GPAC version 2.1-DEV-rev505-gb9577e6ad-master exists to contain a memory leak via the afrt_box_read function at box_code_adobe.c.
gpac gpac
gpac: CVE-2022-46489 CVE-2022-46490 pbc: CVE-2022-38936