CVE-2025-55660 | THREATINT

Description

A stack overflow in the gf_opus_read_length function (media_tools/av_parsers.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.

PUBLISHED Reserved 2025-08-13 | Published 2026-06-15 | Updated 2026-06-15 | Assigner mitre

References

www.openwall.com/lists/oss-security/2026/06/13/15

infosec.exchange/@sigdevel/116733892068649310

cve.org (CVE-2025-55660)

nvd.nist.gov (CVE-2025-55660)

Download JSON