{"id":"CVE-2019-20208","details":"dimC_Read in isomedia/box_code_3gpp.c in GPAC from 0.5.2 to 0.8.0 has a stack-based buffer overflow.","modified":"2026-05-17T11:54:01.870922227Z","published":"2020-01-02T14:16:36.363Z","database_specific":{"unresolved_ranges":[{"extracted_events":[{"last_affected":"8.0"}],"vendor_product":"debian:debian_linux","source":"CPE_FIELD","cpes":["cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*"]}]},"references":[{"type":"WEB","url":"https://github.com/gpac/gpac/blob/v0.5.2/src/isomedia/box_code_3gpp.c#L1100"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2020/01/msg00017.html"},{"type":"FIX","url":"https://github.com/gpac/gpac/commit/bcfcb3e90476692fe0d2bb532ea8deeb2a77580e"},{"type":"EVIDENCE","url":"https://github.com/gpac/gpac/issues/1348"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}