Peterx

**Name of the Vulnerable Software and Affected Versions** GPAC versions up to 2.5-DEV-rev2167-gcc9d617c0-master **Description** A flaw exists in GPAC that involves a stack-based buffer overflow within the `swf def bits jpeg` function, located in the `src/scene manager/swf parse.c` file of the MP4Box component. The issue stems from the manipulation of the `szName` argument. This can be exploited remotely, and details of the exploit are publicly available. **Recommendations** Apply patch 8961c74f87ae3fe2d3352e622f7730ca96d50cf1 to remediate this issue.