heap-buffer-overflow has occurred when running program gpmf-parser in function OpenMP4Source at gpmf-parser/demo/GPMF_mp4reader.c #208
Description
Description
heap-buffer-overflow has occurred when running program gpmf-parser in function OpenMP4Source at gpmf-parser/demo/GPMF_mp4reader.c:649:38
Version
commit a27a3f0c72e54b08a52b63664f17de74bc2514ce (HEAD -> main, origin/main, origin/HEAD)
Author: David Newman <dnewman@gopro.com>
Date: Wed Oct 15 10:25:14 2025 -0700
Added MAX2 metadata
diff --git a/docs/README.md b/docs/README.md
index 9285985..6f29e52 100644
--- a/docs/README.md
+++ b/docs/README.md
@@ -140,7 +140,7 @@ if(GPMF_OK == GPMF_Init(&gs_stream, buffer_with_GPMF_data, size_of_the_buffer))
All data is Big Endian.
-
+^M
### FourCC
@@ -209,19 +209,19 @@ All GPMF data is 32-bit aligned and stored as big-endian. For data types that ar
Steps to reproduce
git clone https://github.com/gopro/gpmf-parser.git
cd gpmf-parser/;mkdir build-release; cd build-release;
CC=clang-15 CFLAGS="-g -fsanitize=address -fno-omit-frame-pointer" cmake ..;
CC=clang-15 CFLAGS="-g -fsanitize=address -fno-omit-frame-pointer" make -j12;
./gpmf-parser ./poc
=================================================================
==3381021==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x602000000014 at pc 0x5ef372c8f0be bp 0x7ffeef73ebb0 sp 0x7ffeef73eba8
READ of size 4 at 0x602000000014 thread T0
#0 0x5ef372c8f0bd in OpenMP4Source /gpmf-parser/demo/GPMF_mp4reader.c:649:38
#1 0x5ef372c821f9 in readMP4File /gpmf-parser/demo/GPMF_demo.c:211:21
#2 0x5ef372c81d5c in main /gpmf-parser/demo/GPMF_demo.c:133:9
#3 0x7c5eb4229d8f in __libc_start_call_main csu/../sysdeps/nptl/libc_start_call_main.h:58:16
#4 0x7c5eb4229e3f in __libc_start_main csu/../csu/libc-start.c:392:3
#5 0x5ef372b3f324 in _start (/gpmf-parser/build-release/gpmf-parser+0x1f324) (BuildId: 6ba4cedcc385dc61a8522522dcf270d7535f0b52)
POC
https://github.com/sdnuhfiu/POC/blob/main/poc
Impact
Potentially causing DoS