Lucene search
China National Vulnerability DatabaseCNVD-2023-13076HistoryOct 21, 2022 - 12:00 a.m.
Bento4 AP4_DescriptorFactory::CreateDescriptorFromStream function denial of service vulnerability
2022-10-2100:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
bento4
denial of service
createdescriptorfromstream
vulnerability
ap4_descriptorfactory
heap memory
0.001 Low
EPSS
Percentile
31.6%
Bento4 is an open source C library for reading and writing MP4 files.Bento4 v1.6.0-639 contains a denial of service vulnerability that originates in AP4_DescriptorFactory:.CreateDescriptorFromStream in Core/Ap4DescriptorFactory.cpp: CreateDescriptorFromStream is not freed or fails to free dynamically allocated heap memory, an attacker can exploit the vulnerability to cause a denial of service.
Related
ubuntucve
ubuntucve
CVE-2022-43032
2022-10-19 00:00:00
nvd
nvd
CVE-2022-43032
2022-10-19 14:15:09
osv
osv
CVE-2022-43032
2022-10-19 14:15:09
prion
prion
Memory corruption
2022-10-19 14:15:00
cvelist
cvelist
CVE-2022-43032
2022-10-19 00:00:00
cve
cve
CVE-2022-43032
2022-10-19 14:15:09