{"vulnerability": "cve-2025-70116", "sightings": [{"uuid": "d7c26443-8aae-48c2-9e85-9daaf5d8afb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-70116", "type": "seen", "source": "https://gist.github.com/sigdevel/b91fa77383e3067c2655c10e1c5f26f0", "content": "Product:   GPAC (MP4Box)\nAffected:  gpac/gpac prior to fix commit (see References)\nCVE:       CVE-2025-70116\nCWE:       CWE-476 (NULL Pointer Dereference)\nCVSS 3.1:  4.3 MEDIUM (AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L)\nReporter:  sigdevel \n\nDescription:\n  When MP4Box processes a truncated or malformed MP4 file containing\n  an unknown/invalid stsd (SampleDescription) box entry, codec\n  descriptor fields (codec name, MIME type, profile string) may not\n  be initialized and remain NULL. The function gf_media_map_esd() in\n  media_tools/isom_tools.c:1364 subsequently calls strlen() on one\n  of these NULL pointers without a prior NULL-check, triggering an\n  ASan SEGV / NULL pointer dereference.\n\n  Crash is reproducible on the current master branch at the time of\n  discovery. No authentication or special privileges required beyond\n  ability to provide a crafted file.\n\nReproduction:\n  -Build-opts: `CC=\"gcc -fsanitize=address -g\" CXX=\"g++ -fsanitize=address -g\"` ;\n  -Command: ./MP4Box -split-size 8000 68_gf_media_map_esd_media_tools_isom_tools_c_1364\n\nAsan-log:\n==3660073==ERROR: AddressSanitizer: SEGV on unknown address 0x00000000001d (pc 0x7fc0abb79c59 bp 0x7ffcecd750a0 sp 0x7ffcecd74848 T0)\n==3660073==The signal is caused by a READ memory access.                                                                                                    \n==3660073==Hint: address points to the zero page.\n    #0 0x7fc0abb79c59 in __strlen_avx2_rtm ../sysdeps/x86_64/multiarch/strlen-avx2.S:76\n    #1 0x7fc0ada78ee9 in strlen ../../../../src/libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc:389\n    #2 0x7fc0ac4e9ece in gf_media_map_esd media_tools/isom_tools.c:1364\n\nPoC:\n  https://github.com/sigdevel/pocs/blob/main/res/gpac/MP4Box/68/68_gf_media_map_esd_media_tools_isom_tools_c_1364\n\nReferences:\n  https://github.com/gpac/gpac/issues/3345\n  https://nvd.nist.gov/vuln/detail/CVE-2025-70116\n  https://infosec.exchange/@sigdevel/116624563750949972", "creation_timestamp": "2026-05-30T09:51:27.000000Z"}, {"uuid": "83a08cc6-cff0-496c-b20d-35da5f74b853", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-70116", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mn3444vdg42s", "content": "CVE-2025-70116: NULL Pointer Dereference in GPAC/MP4Box via gf_media_map_esd on truncated MP4 input", "creation_timestamp": "2026-05-30T12:58:23.647977Z"}]}