GPAC Heap-Based Buffer Overflow Vulnerability in MPEG-2 Transport Stream Processing

A heap-based buffer overflow vulnerability has been identified in GPAC version 0.8.0, specifically within the MP4Box application. The issue arises in the function 'gf_m2ts_process_pmt' located in 'media_tools/mpegts.c' at line 2163. This vulnerability can be exploited to cause a denial-of-service (DoS) condition by using a crafted MP4 file.

Impact

Exploitation of this vulnerability leads to a heap-based buffer overflow, which can commonly be used to execute arbitrary code or cause a denial-of-service condition by crashing the application.

Reproduction

The vulnerability can be reproduced by compiling GPAC with AddressSanitizer enabled, using GCC. After compiling, the MP4Box tool can be run with the '-dash' option followed by a crafted MP4 file that triggers the buffer overflow. The AddressSanitizer will report the heap-buffer-overflow error, indicating that the vulnerability has been successfully exploited.

Remediation

Users are advised to update to the latest version of GPAC, as this vulnerability has been fixed in version 0.9.0.