CVE-2024-24267

Name of the Vulnerable Software and Affected Versions gpac version 2.2.1

Description The issue is related to a memory leak in the gf fileio from blob function, specifically via the gfio blob variable. This can be exploited by a remote attacker to cause a denial of service. The memory leak is due to the lack of memory release after its effective term of service.

Recommendations For gpac version 2.2.1, consider disabling the gf fileio from blob function as a temporary workaround until a patch is available. Restrict access to the gfio blob variable to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.