CVE-2019-20086

GoPro GPMF-parser 1.2.3 has a heap-based buffer over-read in GPMF_Next in GPMF_parser.c.

Source: CVE-2019-20086