Lucene search
China National Vulnerability DatabaseCNVD-2022-89117HistoryOct 09, 2022 - 12:00 a.m.
Bento4 Ap4StdCFileByteStream.cpp Denial of Service Vulnerability
2022-10-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
bento4
denial of service
ap4stdcfilebytestream
vulnerability
heap memory
attack
0.001 Low
EPSS
Percentile
36.7%
Bento4 is an open source C library for reading and writing MP4 files. Bento4 version 1.6.0-639 contains a denial-of-service vulnerability that originates in AP4_StdcFileByteStream::Create(AP4_FileByteStream*, char const*, AP4_FileByteStream::Mode, AP4_ByteStream* &) in System/StdC/Ap4StdCFileByteStream.cpp. FileByteStream*, char const*, AP4_FileByteStream::Mode, AP4_ByteStream* &) function in System/StdC/Ap4StdCFileByteStream.cpp does not release or fails to release dynamically allocated heap memory, an attacker can exploit the vulnerability to cause a denial of service attack.
Related
osv
osv
CVE-2022-41847
2022-09-30 05:15:11
ubuntucve
ubuntucve
CVE-2022-41847
2022-09-30 00:00:00
nvd
nvd
CVE-2022-41847
2022-09-30 05:15:11
cve
cve
CVE-2022-41847
2022-09-30 05:15:11
prion
prion
Memory corruption
2022-09-30 05:15:00
cvelist
cvelist
CVE-2022-41847
2022-09-30 04:41:54