CVE-2023-0358

Name of the Vulnerable Software and Affected Versions gpac/gpac versions prior to 2.3.0-DEV

Description The issue is related to a Use After Free condition in the gpac/gpac multimedia platform, specifically concerning the gf odf vvc cfg read bs() function. This condition involves the use of memory after it has been freed, which can lead to arbitrary code execution or denial of service.

Recommendations For versions prior to 2.3.0-DEV, update to version 2.3.0-DEV or later to resolve the issue. As a temporary workaround, consider disabling the gf odf vvc cfg read bs() function until a patch is available.