Submeter #736542: gpac v2.4.0 NULL Pointer Dereferenceinformação

Títulogpac v2.4.0 NULL Pointer Dereference
DescriçãoA NULL pointer dereference vulnerability exists in the DumpMovieInfo() function in applications/mp4box/filedump.c. When processing a crafted MP4 file containing a chapter track with an empty text sample (text_length = 0), the txt->text pointer is NULL and is passed directly to fprintf() with the %s format specifier, resulting in undefined behavior.
Fonte⚠️ https://github.com/gpac/gpac/issues/3427
Utilizador
 Kery Qi (UID 94424)
Submissão12/01/2026 13h54 (há 3 meses)
Moderação25/01/2026 10h55 (13 days later)
EstadoAceite
Entrada VulDB342805 [GPAC até 2.4.0 filedump.c DumpMovieInfo Negação de Serviço]
Pontos19

VoltarVisão GeralPróximo

Want to know what is going to be exploited?

We predict KEV entries!