GPAC

by GPACv26.02

Last updated Jun 8, 2026

Ultramedia Open Source Infrastructure for Video Streaming and Next-Gen Multimedia Transcoding, Packaging and Delivery.

Install with winget

$ winget install --id GPAC.GPAC --exact --version 26.02

Run in Command Prompt, PowerShell, or Windows Terminal. Prompts for any agreements.

Silent install command for GPAC

GPAC uses EXE (NSIS). The silent install switches are /S.

One-line silent install (x64, machine scope)

gpac-26.02-rev0-g118e60a9-master-x64.exe /S

See the full silent install reference for GPAC →

Built by Pckgr

For Intune admins

Stop chasing app updates. Pckgr patches them for you.

Automated application patching for Microsoft Intune. Pckgr keeps a curated library of 1,000+ apps continuously up-to-date in your tenant via Microsoft Graph - no manual repackaging, no chasing vendor sites.

Start free 30-day trial

No credit card required.

About

The GPAC Open Source framework empowers the seamless handling of a diverse range of multimedia elements. It is an all-in-one solution for processing, inspecting, packaging, streaming, playback and interaction with media content.

GPAC handles audio, video, subtitles, metadata, scalable graphics, encrypted media, 2D/3D graphics and ECMAScript to enable the most beautiful and unimaginable ultramedia experiences. GPAC’s comprehensive suite of tools, including the renowned MP4Box and the versatile gpac application, offer robust functionality for media manipulation, packaging and streaming.

Installers · v26.02

Architecture	Type	Scope	Install	Download
x86	EXE NSIS	machine		Direct
x64	EXE NSIS	machine		Direct

Copy a command tailored to that specific architecture, type, and scope - useful when winget would otherwise pick a different default.

Security

25 known CVEs via NVD

medium6.5Patched in wingetCVE-2025-55659affects v2.4Jun 9, 2026
A NULL pointer dereference in the ctts_box_write function (isomedia/box_code_base.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.
medium6.5Patched in wingetCVE-2025-55658affects v2.4Jun 9, 2026
GPAC MP4Box v2.4 was discovered to contain a floating point exception in the gf_opus_parse_packet_header function (media_tools/av_parsers.c). bThis vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted MP4 file.
high7.5Patched in wingetCVE-2025-55657affects v2.4Jun 9, 2026
A NULL pointer dereference in the gf_odf_vvc_cfg_write_bs function (odf/descriptors.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.
medium5.5Patched in wingetCVE-2025-55651affects v2.4Jun 9, 2026
A NULL pointer dereference in the gf_isom_get_user_data_count function (isomedia/isom_read.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.
high7.5Patched in wingetCVE-2025-52293affects v2.4Jun 9, 2026
A segmentation violaton in the gf_hevc_read_sps_bs_internal function (media_tools/av_parsers.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying crafted HEVC SPS data.
high7.5Patched in wingetCVE-2025-52292affects v2.4Jun 9, 2026
A stack buffer overflow in the filein_process function (in_file.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.
low3.3Patched in wingetCVE-2026-9572affects <=2.4.0May 26, 2026
A security vulnerability has been detected in GPAC up to 2.4.0. Affected by this issue is the function Media_GetSample of the file src/isomedia/media.c of the component MP4Box. Such manipulation of the argument cat leads to memory leak. The attack can only be performed from a lo...
Patch
low3.3Fix availableCVE-2026-8124affects <=26.02.0May 8, 2026
A security vulnerability has been detected in GPAC up to 26.02.0. This affects the function sidx_box_read of the file src/isomedia/box_code_base.c. The manipulation leads to allocation of resources. The attack must be carried out locally. The exploit has been disclosed publicly...
Patch

Showing 8 of 25. Source: NVD, updated 2h ago. Patch status is best-effort: NVD's fix version is compared against the latest version in winget, but the two version formats don't always align. Confirm with the vendor advisory before treating any specific build as safe.

See a CVE that affects your fleet? Push the patched version to Intune in one click with Pckgr - automated patching is the only way to keep up.

Related apps

Wondershare PDFelementWondershare
Wondershare.PDFelement.12v12.1.23
Take control of your documents with this powerful PDF editor.
Microsoft TeamsMicrosoft Corporation
Microsoft.Teamsv26134.1702.4747.7366
Collaborate more effectively with a faster, simpler, smarter, and more flexible Teams.
FFmpegGyan
Gyan.FFmpegv8.1.1
A complete, cross-platform solution to record, convert and stream audio and video.
A
Adobe Acrobat ProAdobe
Adobe.Acrobat.Prov26.001.21529
Collaborate With Your Clients — Review Documents In Real Time With Your Team, Wherever and Whenever You Want. Edit, Sign, Share, Protect & Search PDF's On Any Device.
yt-dlpyt-dlp
yt-dlp.yt-dlpv2026.06.09
A feature-rich command-line audio/video downloader.
CapCutBytedance Pte. Ltd.
ByteDance.CapCutv8.7.0.3685
A video editing tool packed with features on your desktop or laptop

More from GPAC or browse audio, codec, convert.

Frequently asked questions

How do I install GPAC on Windows?

Open Windows Terminal, PowerShell, or Command Prompt and run: winget install --id GPAC.GPAC --exact --version 26.02. winget downloads the installer from GPAC and runs it. Requires Windows 10 (1809+) or Windows 11.

How do I install GPAC silently for unattended deployment?

Add --silent and accept the agreements upfront: winget install --id GPAC.GPAC --exact 26.02 --silent --accept-package-agreements --accept-source-agreements. This is the variant Intune, Configuration Manager, and other deployment tools should use.

What are the silent install switches for GPAC?

GPAC uses EXE (NSIS). Run the downloaded installer with: gpac-26.02-rev0-g118e60a9-master-x64.exe /S. The silent switches are /S.

How do I uninstall GPAC via winget?

Run: winget uninstall --id GPAC.GPAC --exact. Add --silent for unattended uninstalls. winget will use the registered uninstaller from GPAC's Apps & Features entry.

Is GPAC free?

GPAC is distributed under LGPL-2.1. Refer to the publisher (https://gpac.io/downloads/gpac-nightly-builds/) for the full license terms - Wingetly itself does not charge for installation.

Does GPAC work on Windows 10?

Yes, as long as your Windows 10 build supports winget (1809 or newer). winget ships with App Installer on Windows 10/11 and pulls GPAC directly from the publisher.

How do I keep GPAC up to date?

Run winget upgrade --id GPAC.GPAC --exact, or winget upgrade --all to update everything winget tracks. We index 3 versions of GPAC from microsoft/winget-pkgs.

Recent versions

26.02latest
2.4
2.2.1