Null Pointer Dereference Vulnerability in Gpac through 1.0.1: Denial of Service via gf_avc_parse_nalu function

Null Pointer Dereference Vulnerability in Gpac through 1.0.1: Denial of Service via gf_avc_parse_nalu function

CVE-2021-40565 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

A Segmentation fault caused by a null pointer dereference vulnerability exists in Gpac through 1.0.1 via the gf_avc_parse_nalu function in av_parsers.c when using mp4box, which causes a denial of service.

Learn more about our Web Application Penetration Testing UK.