Headline
CVE-2021-40576: fixed #1904 · gpac/gpac@ad18ece
The binary MP4Box in Gpac 1.0.1 has a null pointer dereference vulnerability in the gf_isom_get_payt_count function in hint_track.c, which allows attackers to cause a denial of service.
Permalink
Browse files
- Loading branch information
1 parent b07a6ac commit ad18ece95fa064efc0995c4ab2c985f77fb166ec
Showing with 1 addition and 1 deletion.
- +1 −1 src/isomedia/hint_track.c
@@ -43,7 +43,7 @@ Bool IsHintTrack(GF_TrackBox *trak)
u32 GetHintFormat(GF_TrackBox *trak)
{
GF_HintMediaHeaderBox *hmhd = (GF_HintMediaHeaderBox *)trak->Media->information->InfoHeader;
if (hmhd->type != GF_ISOM_BOX_TYPE_HMHD)
if (!hmhd || (hmhd->type != GF_ISOM_BOX_TYPE_HMHD))
return 0;
if (!hmhd || !hmhd->subType) {
0 comments on commit ad18ece
Please sign in to comment.