17 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-14545
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There exists one invalid memory read bug in AP4SampleDescription::GetType in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow attackers to cause a...
Linux Distros Unpatched Vulnerability : CVE-2018-14589
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in Bento4 1.5.1-624. AP4Mp4AudioDsiParser::ReadBits in Codecs/Ap4Mp4AudioInfo.cpp has a heap-based buffer over-read. CVE-2018-14589...
Linux Distros Unpatched Vulnerability : CVE-2018-14531
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Bento4 1.5.1-624. There is an unspecified heap-buffer-overflow crash in the AP4HvccAtom class in Core/Ap4HvccAtom.cpp. CVE-2018-14531...
Bento4 Buffer Overflow Vulnerability (CNVD-2018-14699)
Bento4 is an open source C++ library for reading and writing MP4 files. A heap buffer overflow vulnerability exists in AP4AvccAtom::Create in the Core/Ap4AvccAtom.cpp file in Bento4 version 1.5.1-624. An attacker can exploit this vulnerability to cause a heap buffer out-of-bounds read...
UBUNTU-CVE-2018-14584
An issue has been discovered in Bento4 1.5.1-624. AP4AvccAtom::Create in Core/Ap4AvccAtom.cpp has a heap-based buffer over-read...
CVE-2018-14587
An issue has been discovered in Bento4 1.5.1-624. AP4MemoryByteStream::WritePartial in Core/Ap4ByteStream.cpp has a buffer over-read...
CVE-2018-14543
There exists one NULL pointer dereference vulnerability in AP4JsonInspector::AddField in Ap4Atom.cpp in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp4dump...
Design/Logic Flaw
There exists one invalid memory read bug in AP4SampleDescription::GetFormat in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp42ts...
Design/Logic Flaw
There exists one invalid memory read bug in AP4SampleDescription::GetType in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp42ts...
CVE-2018-14544
There exists one invalid memory read bug in AP4SampleDescription::GetFormat in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp42ts...
CVE-2018-14544
There exists one invalid memory read bug in AP4SampleDescription::GetFormat in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp42ts...
CVE-2018-14543
There exists one NULL pointer dereference vulnerability in AP4JsonInspector::AddField in Ap4Atom.cpp in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp4dump...
Bento4 Invalid Memory Read Vulnerability
Bento4 is a C++ class library and tool for reading and writing ISO-MP4 files. An invalid memory read vulnerability exists in AP4SampleDescription::GetType in Ap4SampleDescription.h in Bento4 1.5.1-624, which can be exploited by an attacker to cause a denial of service via specially crafted mp4...
Bento4 Null Pointer Dereference Vulnerability
Bento4 is a C++ class library and tool for reading and writing ISO-MP4 files. A null pointer dereference vulnerability exists in AP4JsonInspector::AddField in Ap4Atom.cpp in Bento4 1.5.1-624, which can be exploited by an attacker to cause a denial of service via specially crafted mp4 files...
UBUNTU-CVE-2018-13846
An issue has been found in Bento4 1.5.1-624. AP4Mpeg2TsVideoSampleStream::WriteSample in Core/Ap4Mpeg2Ts.cpp has a heap-based buffer over-read after a call from Mp42Ts.cpp, a related issue to CVE-2018-14532...
UBUNTU-CVE-2018-13848
An issue has been found in Bento4 1.5.1-624. It is a SEGV in AP4StszAtom::GetSampleSize in Core/Ap4StszAtom.cpp...
CVE-2018-13847
The CVE-2018-13847 entry concerns Bento4 1.5.1-624, where a SEGV occurs in AP4_StcoAtom::AdjustChunkOffsets (Core/Ap4StcoAtom.cpp). Affected component is the StcoAtom handling, with the fault described as a segmentation fault that could cause a crash. Public references across multiple feeds (NVD,...