AVC_DuplicateConfig() at isomedia/avc_ext.c in GPAC 0.7.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file. There is cfg_new->AVCLevelIndication = cfg->AVCLevelIndication; but cfg could be NULL.
A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Gpac | Gpac | 0.7.1 (including) | 0.7.1 (including) |