CVE-2019-12481 (NVD)

2019-05-30

An issue was discovered in GPAC 0.7.1. There is a NULL pointer dereference in the function GetESD at isomedia/track.c in libgpac.a, as demonstrated by MP4Box.

Products Gpac
Type NULL Pointer Dereference (CWE-476)
First patch - None (likely due to unavailable code)
Links https://github.com/gpac/gpac/issues/1249
https://lists.debian.org/debian-lts-announce/2019/06/msg00030.html