PT-2026-43380 · Gpac · Gpac
Fczhang
·
Published
2026-05-26
·
Updated
2026-05-26
·
CVE-2026-9572
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
GPAC versions prior to 2.4.1
Description
A memory leak occurs in the MP4Box component within the
Media GetSample() function located in the src/isomedia/media.c file. This issue is triggered by the manipulation of the cat argument and can only be executed from a local environment.Recommendations
Apply patch e79c5cbe8b3fed27f4854ec229457d30c96206f1 to resolve the issue.
Exploit
Fix
Memory Leak
Improper Resource Release
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Gpac