{"id":"CVE-2021-30199","details":"In filters/reframe_latm.c in GPAC 1.0.1 there is a Null Pointer Dereference, when gf_filter_pck_get_data is called. The first arg pck may be null with a crafted mp4 file,which results in a crash.","modified":"2026-04-11T17:12:22.644387Z","published":"2021-04-19T20:15:14.707Z","references":[{"type":"FIX","url":"https://github.com/gpac/gpac/commit/b2db2f99b4c30f96e17b9a14537c776da6cb5dca"},{"type":"EVIDENCE","url":"https://github.com/gpac/gpac/issues/1728"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/gpac/gpac","events":[{"introduced":"0"},{"last_affected":"d8538e8ae946b32d99c6b2c57cbb327146e9cd9d"},{"fixed":"b2db2f99b4c30f96e17b9a14537c776da6cb5dca"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"1.0.1"}]}}],"versions":["v0.5.2","v0.6.0","v0.7.0","v0.7.1","v0.9.0","v0.9.0-preview","v1.0.0","v1.0.1"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-30199.json","vanir_signatures_modified":"2026-04-11T17:12:22Z","vanir_signatures":[{"source":"https://github.com/gpac/gpac/commit/b2db2f99b4c30f96e17b9a14537c776da6cb5dca","target":{"function":"latm_dmx_process","file":"src/filters/reframe_latm.c"},"digest":{"function_hash":"322881962646193761510325288580375918980","length":3034},"id":"CVE-2021-30199-5b485d5f","deprecated":false,"signature_version":"v1","signature_type":"Function"},{"source":"https://github.com/gpac/gpac/commit/b2db2f99b4c30f96e17b9a14537c776da6cb5dca","target":{"file":"src/filters/reframe_latm.c"},"digest":{"threshold":0.9,"line_hashes":["67582710314780463758571953239788679651","290015795950904442635474948029970013247","273375960481668448140498039584626171914","327052348851824933168734381584993964613","177691872155673446041301130712305766036","88248128088414560189744820890003820416","162038618548578233682791090979352532957","179112026165925033742743549772726948823","237535298546394459331137734534040221136","219513559262009853049938752600817905056","193299817810724375760158972926776532632"]},"id":"CVE-2021-30199-f14e6216","deprecated":false,"signature_version":"v1","signature_type":"Line"}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}