Security Advisory

CVE-2021-30020

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-04-19 19:34:08
Last updated 2024-08-03 22:24:59
Assigner mitre
State PUBLISHED

Description

In the function gf_hevc_read_pps_bs_internal function in media_tools/av_parsers.c in GPAC 1.0.1 there is a loop, which with crafted file, pps->num_tile_columns may be larger than sizeof(pps->column_width), which results in a heap overflow in the loop.