PT-2026-55929 · Undefined · Undefined
Noki
·
Published
2026-07-06
·
Updated
2026-07-06
·
CVE-2025-15667
CVSS v2.0
1.7
Low
| Vector | AV:L/AC:L/Au:S/C:N/I:N/A:P |
A vulnerability was determined in GPAC up to 2.5-DEV. This vulnerability affects the function gf isom nalu sample rewrite of the file src/isomedia/avc ext.c of the component MP4Box. This manipulation of the argument nalu out bs causes double free. It is possible to launch the attack on the local host. The exploit has been publicly disclosed and may be utilized. Patch name: f29f955f2a3b5e8e507caad3e52319f961bf37bf. To fix this issue, it is recommended to deploy a patch.
Exploit
Fix
Buffer Overflow
Double Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Undefined