A Null pointer dereference vulnerability exits in MP4Box – GPAC version 0.8.0-rev177-g51a8ef874-master via the gf_isom_get_track_id function, which causes a denial of service.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25427
Reference (s):
- https://github.com/gpac/gpac/commit/8e585e623b1d666b4ef736ed609264639cb27701
- https://github.com/gpac/gpac/issues/1406