Gpac · Gpac · CVE-2020-35979
Name of the Vulnerable Software and Affected Versions:
GPAC versions 0.8.0 through 1.0.1
Description:
A heap-based buffer overflow issue exists in the `gp rtp builder do avc()` function, located in the `ietf/rtp pck mpeg4.c` file.
Recommendations:
For GPAC version 0.8.0, update to a version that fixes the issue.
For GPAC version 1.0.1, update to a version that fixes the issue.
As a temporary workaround, consider disabling the `gp rtp builder do avc()` function until a patch is available.