We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Thanks for reporting your issue. Please make sure these boxes are checked before submitting your issue - thank you!
Detailed guidelines: http://gpac.io/2013/07/16/how-to-file-a-bug-properly/
MP4Box - GPAC version 2.3-DEV-rev35-gbbca86917-master (c) 2000-2023 Telecom Paris distributed under LGPL v2.1+ - http://gpac.io Please cite our work in your research: GPAC Filters: https://doi.org/10.1145/3339825.3394929 GPAC: https://doi.org/10.1145/1291233.1291452 GPAC Configuration: --enable-sanitizer --enable-debug Features: GPAC_CONFIG_LINUX GPAC_64_BITS GPAC_HAS_IPV6 GPAC_HAS_SOCK_UN GPAC_MINIMAL_ODF GPAC_HAS_QJS GPAC_HAS_LINUX_DVB GPAC_DISABLE_3D
complie and run
./configure --enable-sanitizer make ./MP4Box -info poc
information
filters/load_text.c:353:14: runtime error: index 2048 out of bounds for type 'char [2048]'
https://github.com/xxy1126/Vuln/blob/main/gpac/1.mp4
The text was updated successfully, but these errors were encountered:
load_text: prevent overflow on long lines conversion to utf8 (#2386)
a5efec8
Hi,
thanks for the report, should be fixed in the above commit
reopen if needed
Sorry, something went wrong.
This issue was assigned CVE-2023-1452.
load_text: prevent overflow on long lines conversion to utf8 (gpac#2386)
6d6c453
No branches or pull requests
Thanks for reporting your issue. Please make sure these boxes are checked before submitting your issue - thank you!
Detailed guidelines: http://gpac.io/2013/07/16/how-to-file-a-bug-properly/
version
reproduce
complie and run
information
poc
https://github.com/xxy1126/Vuln/blob/main/gpac/1.mp4
The text was updated successfully, but these errors were encountered: