CNNVD-202601-4420 Information

CNNVD ID

CNNVD-202601-4420

Related CVE

CVE-2026-1418

• CNNVD Published: 2026-01-26

Description (Chinese)

GPAC是GPAC开源的一款开源的多媒体框架。 GPAC 2.4.0及之前版本存在缓冲区错误漏洞，该漏洞源于SRT字幕导入组件存在越界写入。

Description (English)

GPAC is an open-source multimedia framework for GPS open sources. GPAC 2.4.0 and previous versions had an error loophole in the buffer zone, resulting from the cross-border writing of SRT subtitle import components.

Hazard Level

High

Vulnerability Type

缓冲区错误

Affected Vendor

GPAC

Published

2026-01-26

Last Modified

2026-02-24

References

https://github.com/enocknt/gpac/commit/10c73b82cf0e367383d091db38566a0e4fe71772 https://vuldb.com/?ctiid.342807 https://github.com/gpac/gpac/issues/3425 https://vuldb.com/?id.342807 https://vuldb.com/?submit.736544 https://github.com/gpac/gpac/issues/3425#issue-3801961068 https://access.redhat.com/security/cve/cve-2026-1418