CVE-2019-20630

Published
View on NVD ↗
CVSS v3
5.5
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
1
PROJECT

Description

An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer over-read in BS_ReadByte (called from gf_bs_read_bit) in utils/bitstream.c that can cause a denial of service via a crafted MP4 file.

gpac/gpac
gpac/gpac
GPAC Ultramedia OSS for Video Streaming & Next-Gen Multimedia Transcoding, Packaging & Delivery
GitHubGitHub
3.26K