4 matches found
Bento4 安全漏洞
Bento4 is an open source C++ library for reading and writing MP4 files from Axiomatic Systems. A security vulnerability exists in Bento4 version v1.6.0-641, which stems from a segmentation error in Ap4Atom.cpp...
Bento4 安全漏洞
Bento4 is an open source C++ library for reading and writing MP4 files from Axiomatic Systems. A security vulnerability exists in Axiomatic Bento4 version 1.6.0 and earlier, which stems from a heap buffer overflow in the AP4BitReader::ReadBits function...
Heap-based Buffer Overflow in axiomatic-systems/bento4
✍️ Description heap-buffer-overflow 🕵️♂️ Proof of Concept Verification steps: 1.Get the source code of Bento4 2.Compile the Bento4 bash $ cd Bento4 $ mkdir checkbuild && cd checkbuild $ cmake ../ -DCMAKECCOMPILER=clang -DCMAKECXXCOMPILER=clang++ -DCMAKECFLAGS="-fsanitize=address"...
in axiomatic-systems/bento4
✍️ Description NULL pointer dereference of Ap4Descriptor.h in function GetTag 🕵️♂️ Proof of Concept Verification steps: 1.Get the source code of Bento4 2.Compile the Bento4 bash $ cd Bento4 $ mkdir checkbuild && cd checkbuild $ cmake ../ -DCMAKECCOMPILER=clang -DCMAKECXXCOMPILER=clang++...