Aurelien David

35 exploits Active since Mar 2018
CVE-2026-7135 WRITEUP MEDIUM WRITEUP
GPAC MP4Box box_code_base.c elng_box_read out-of-bounds
A security flaw has been discovered in GPAC up to 26.03-DEV-rev105-g8f39a1eb3-master. Affected by this vulnerability is the function elng_box_read of the file src/isomedia/box_code_base.c of the component MP4Box. Performing a manipulation of the argument elng results in out-of-bounds read. The attack needs to be approached locally. The exploit has been released to the public and may be used for attacks. The patch is named cf6ac48c972eaaee2af270adc3f36615325deb3e. The affected component should be upgraded.
CVSS 5.3
CVE-2026-33144 WRITEUP MEDIUM WRITEUP
GPAC MP4Box Heap Buffer Overflow Write in gf_xml_parse_bit_sequence_bs (NHML BS Parsing)
GPAC is an open-source multimedia framework. Prior to commit 86b0e36, a heap-based buffer overflow (write) vulnerability was discovered in GPAC MP4Box. The vulnerability exists in the gf_xml_parse_bit_sequence_bs function in utils/xml_bin_custom.c when processing a crafted NHML file containing malicious <BS> (BitSequence) elements. An attacker can exploit this by providing a specially crafted NHML file, causing an out-of-bounds write on the heap. This issue has been via commit 86b0e36.
CVSS 5.8
CVE-2026-27821 WRITEUP HIGH WRITEUP
GPAC <=26.02.0 - Buffer Overflow
GPAC is an open-source multimedia framework. In versions up to and including 26.02.0, a stack buffer overflow occurs during NHML file parsing in `src/filters/dmx_nhml.c`. The value of the xmlHeaderEnd XML attribute is copied from att->value into szXmlHeaderEnd[1000] using strcpy() without any length validation. If the input exceeds 1000 bytes, it overwrites beyond the stack buffer boundary. Commit 9bd7137fded2db40de61a2cf3045812c8741ec52 patches the issue.
CVSS 7.8
CVE-2018-13006 WRITEUP CRITICAL WRITEUP
Debian Linux - Out-of-Bounds Read
An issue was discovered in MP4Box in GPAC 0.7.1. There is a heap-based buffer over-read in the isomedia/box_dump.c function hdlr_dump.
CVSS 9.8
CVE-2018-20760 WRITEUP HIGH WRITEUP
Gpac < 0.7.1 - Out-of-Bounds Write
In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because a certain -1 return value is mishandled.
CVSS 7.8
CVE-2018-20761 WRITEUP HIGH WRITEUP
Gpac < 0.7.1 - Memory Corruption
GPAC version 0.7.1 and earlier has a Buffer Overflow vulnerability in the gf_sm_load_init function in scene_manager.c in libgpac_static.a.
CVSS 7.8
CVE-2018-20762 WRITEUP HIGH WRITEUP
Gpac < 0.7.1 - Memory Corruption
GPAC version 0.7.1 and earlier has a buffer overflow vulnerability in the cat_multiple_files function in applications/mp4box/fileimport.c when MP4Box is used for a local directory containing crafted filenames.
CVSS 7.8
CVE-2018-20763 WRITEUP HIGH WRITEUP
Gpac < 0.7.1 - Out-of-Bounds Write
In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because of missing szLineConv bounds checking.
CVSS 7.8
CVE-2018-21017 WRITEUP MEDIUM WRITEUP
Gpac - Memory Leak
GPAC 0.7.1 has a memory leak in dinf_Read in isomedia/box_code_base.c.
CVSS 6.5
CVE-2018-7752 WRITEUP HIGH WRITEUP
GPAC <0.7.1 - Buffer Overflow
GPAC through 0.7.1 has a Buffer Overflow in the gf_media_avc_read_sps function in media_tools/av_parsers.c, a different vulnerability than CVE-2018-1000100.
CVSS 7.8
CVE-2019-11222 WRITEUP HIGH WRITEUP
Gpac - Out-of-Bounds Write
gf_bin128_parse in utils/os_divers.c in GPAC 0.7.1 has a buffer overflow issue for the crypt feature when encountering a crafted_drm_file.xml file.
CVSS 7.8
CVE-2019-20208 WRITEUP MEDIUM WRITEUP
Gpac < 0.8.0 - Out-of-Bounds Write
dimC_Read in isomedia/box_code_3gpp.c in GPAC from 0.5.2 to 0.8.0 has a stack-based buffer overflow.
CVSS 5.5
CVE-2020-11558 WRITEUP CRITICAL WRITEUP
Gpac - Use After Free
An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by MP4Box. audio_sample_entry_Read in isomedia/box_code_base.c does not properly decide when to make gf_isom_box_del calls. This leads to various use-after-free outcomes involving mdia_Read, gf_isom_delete_movie, and gf_isom_parse_movie_boxes.
CVSS 9.8
CVE-2020-24829 WRITEUP MEDIUM WRITEUP
Gpac < 0.8.0 - Out-of-Bounds Write
An issue was discovered in GPAC from v0.5.2 to v0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer overflow in gf_m2ts_section_complete in media_tools/mpegts.c that can cause a denial of service (DOS) via a crafted MP4 file.
CVSS 5.5
CVE-2023-0760 WRITEUP HIGH WRITEUP
Gpac < 2.2.0 - Out-of-Bounds Write
Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to V2.1.0-DEV.
CVSS 7.8
CVE-2023-0817 WRITEUP HIGH WRITEUP
Gpac < 2.3.0-dev - Buffer Over-read
Buffer Over-read in GitHub repository gpac/gpac prior to v2.3.0-DEV.
CVSS 7.8
CVE-2023-0818 WRITEUP MEDIUM WRITEUP
gpac/gpac <2.3.0-DEV - Info Disclosure
Off-by-one Error in GitHub repository gpac/gpac prior to v2.3.0-DEV.
CVSS 5.5
CVE-2023-0819 WRITEUP HIGH WRITEUP
Gpac < 2.3.0-dev - Out-of-Bounds Write
Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to v2.3.0-DEV.
CVSS 7.8
CVE-2023-0841 WRITEUP MEDIUM WRITEUP
Gpac - Out-of-Bounds Write
A vulnerability, which was classified as critical, has been found in GPAC 2.3-DEV-rev40-g3602a5ded. This issue affects the function mp3_dmx_process of the file filters/reframe_mp3.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-221087.
CVSS 6.3
CVE-2023-0866 WRITEUP HIGH WRITEUP
Gpac < 2.2.0 - Heap Buffer Overflow
Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3.0-DEV.
CVSS 7.8
CVE-2023-46001 WRITEUP MEDIUM WRITEUP
gpac MP4Box <2.3 - Buffer Overflow
Buffer Overflow vulnerability in gpac MP4Box v.2.3-DEV-rev573-g201320819-master allows a local attacker to cause a denial of service via the gpac/src/isomedia/isom_read.c:2807:51 function in gf_isom_get_user_data.
CVSS 5.5
CVE-2023-46927 WRITEUP MEDIUM WRITEUP
GPAC <2.3 - Buffer Overflow
GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow in gf_isom_use_compact_size gpac/src/isomedia/isom_write.c:3403:3 in gpac/MP4Box.
CVSS 5.5
CVE-2023-46928 WRITEUP MEDIUM WRITEUP
GPAC 2.3-DEV-rev605-gfc9e29089-master - Memory Corruption
GPAC 2.3-DEV-rev605-gfc9e29089-master contains a SEGV in gpac/MP4Box in gf_media_change_pl /afltest/gpac/src/media_tools/isom_tools.c:3293:42.
CVSS 5.5
CVE-2023-46929 WRITEUP HIGH WRITEUP
GPAC <2.3 - Memory Corruption
An issue discovered in GPAC 2.3-DEV-rev605-gfc9e29089-master in MP4Box in gf_avc_change_vui /afltest/gpac/src/media_tools/av_parsers.c:6872:55 allows attackers to crash the application.
CVSS 7.5
CVE-2023-46930 WRITEUP MEDIUM WRITEUP
GPAC 2.3-DEV-rev605-gfc9e29089-master - Memory Corruption
GPAC 2.3-DEV-rev605-gfc9e29089-master contains a SEGV in gpac/MP4Box in gf_isom_find_od_id_for_track /afltest/gpac/src/isomedia/media_odf.c:522:14.
CVSS 5.5