CVE-2020-19751

Name of the Vulnerable Software and Affected Versions gpac version 0.8.0

Description The issue is related to a heap-based buffer over-read in the gf odf del ipmp tool function, located in the odf code.c file. This can allow a remote attacker to access confidential data and cause a denial of service. The gf odf del ipmp tool function is vulnerable due to a buffer over-read, which can be exploited by an attacker.

Recommendations For gpac version 0.8.0, consider disabling the gf odf del ipmp tool function until a patch is available to prevent potential exploitation. Restrict access to the odf code.c component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.