CVE-2020-24829

gpac/gpac

on github

Published

August 4, 2021

Severity

CVSS v3:

5.5 MEDIUM

CVSS v2:

4.3 MEDIUM

Description

An issue was discovered in GPAC v0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer overflow in gf_m2ts_section_complete in media_tools/mpegts.c that can cause a denial of service (DOS) via a crafted MP4 file.

References

https://github.com/gpac/gpac/issues/1422

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:gpac:gpac:0.8.0:::::::*	n/a	n/a	0.8.0

External Links

NVD - CVE-2020-24829