Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2018-17235HistorySep 20, 2018 - 6:29 a.m.
CVE-2018-17235
2018-09-2006:29:00
Debian Security Bug Tracker
security-tracker.debian.org
7
EPSS
0.001
Percentile
31.4%
The function mp4v2::impl::MP4Track::FinishSdtp() in mp4track.cpp in libmp4v2 2.1.0 mishandles compatibleBrand while processing a crafted mp4 file, which leads to a heap-based buffer over-read, causing denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 9 | all | mp4v2 | <= 2.0.0~dfsg0-5 | mp4v2_2.0.0~dfsg0-5_all.deb |
Related
prion
prion
Heap overflow
2018-09-20 06:29:00
cvelist
cvelist
CVE-2018-17235
2018-09-20 00:00:00
nvd
nvd
CVE-2018-17235
2018-09-20 06:29:00
osv
osv
CVE-2018-17235
2018-09-20 06:29:00
cve
cve
CVE-2018-17235
2018-09-20 06:29:00
veracode
veracode
Out-of-bounds Read
2023-05-09 06:14:06
ubuntucve
ubuntucve
CVE-2018-17235
2018-09-20 00:00:00