21 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-14646
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The AP4AvccAtom and AP4HvccAtom classes in Bento4 version 1.5.0-617 do not properly validate data sizes, leading to a heap-based buffer over-read and applicatio...
Bento4 'AP4_BitStream::ReadBytes' Heap Buffer Overflow Vulnerability
Bento4 is an open source C++ library for reading and writing MP4 files. A security vulnerability exists in AP4BitStream::ReadBytes in the Codecs/Ap4BitStream.cpp file in Bento4 version 1.5.0-617. A remote attacker can exploit this vulnerability to cause a denial of service heap buffer out-of-boun...
Bento4 Core/Ap4AtomSampleTable.cpp File Null Pointer Reference Vulnerability Vulnerability
Bento4 is an open source C++ library for reading and writing MP4 files. A security vulnerability exists in the AP4AtomSampleTable::GetSample in the Core/Ap4AtomSampleTable.cpp file in Bento4 version 1.5.0-617. A remote attacker can exploit this vulnerability to cause a denial of service null...
Bento4 MetaData/Ap4MetaData.cpp File Null Pointer Reference Vulnerability
Bento4 is an open source C++ library for reading and writing MP4 files. A security vulnerability exists in the AP4DataAtom class of the MetaData/Ap4MetaData.cpp file in Bento4 version 1.5.0-617. A remote attacker can exploit this vulnerability to cause a denial of service null pointer...
Bento4 Core/Ap4AtomFactory.cpp file null pointer reference vulnerability
Bento4 is an open source C++ library for reading and writing MP4 files. A security vulnerability exists in AP4AtomFactory::CreateAtomFromStream in the Core/Ap4AtomFactory.cpp file in Bento4 version 1.5.0-617, which stems from the program's failure to detect null values. An attacker can exploit th...
CVE-2017-14640
A NULL pointer dereference was discovered in AP4AtomSampleTable::GetSample in Core/Ap4AtomSampleTable.cpp in Bento4 version 1.5.0-617. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service...
CVE-2017-14646
The AP4AvccAtom and AP4HvccAtom classes in Bento4 version 1.5.0-617 do not properly validate data sizes, leading to a heap-based buffer over-read and application crash in AP4DataBuffer::SetData in Core/Ap4DataBuffer.cpp...
CVE-2017-14638
AP4AtomFactory::CreateAtomFromStream in Core/Ap4AtomFactory.cpp in Bento4 version 1.5.0-617 has missing NULL checks, leading to a NULL pointer dereference, segmentation fault, and application crash in AP4Atom::SetType in Core/Ap4Atom.h...
CVE-2017-14642
A NULL pointer dereference was discovered in the AP4HdlrAtom class in Bento4 version 1.5.0-617. The vulnerability causes a segmentation fault and application crash in AP4StdcFileByteStream::ReadPartial in System/StdC/Ap4StdCFileByteStream.cpp, which leads to remote denial of service...
CVE-2017-14645
A heap-based buffer over-read was discovered in AP4BitStream::ReadBytes in Codecs/Ap4BitStream.cpp in Bento4 version 1.5.0-617. The vulnerability causes an application crash, which leads to remote denial of service...
Heap overflow
The AP4HdlrAtom class in Core/Ap4HdlrAtom.cpp in Bento4 version 1.5.0-617 uses an incorrect character data type, leading to a heap-based buffer over-read and application crash in AP4BytesToUInt32BE in Core/Ap4Utils.h...
Null pointer dereference
AP4AtomFactory::CreateAtomFromStream in Core/Ap4AtomFactory.cpp in Bento4 version 1.5.0-617 has missing NULL checks, leading to a NULL pointer dereference, segmentation fault, and application crash in AP4Atom::SetType in Core/Ap4Atom.h...
UBUNTU-CVE-2017-14641
A NULL pointer dereference was discovered in the AP4DataAtom class in MetaData/Ap4MetaData.cpp in Bento4 version 1.5.0-617. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service...
CVE-2017-14640
A NULL pointer dereference was discovered in AP4AtomSampleTable::GetSample in Core/Ap4AtomSampleTable.cpp in Bento4 version 1.5.0-617. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service...
Heap overflow
A heap-based buffer over-read was discovered in AP4BitStream::ReadBytes in Codecs/Ap4BitStream.cpp in Bento4 version 1.5.0-617. The vulnerability causes an application crash, which leads to remote denial of service...
CVE-2017-14641
A NULL pointer dereference was discovered in the AP4DataAtom class in MetaData/Ap4MetaData.cpp in Bento4 version 1.5.0-617. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service...
CVE-2017-14638
AP4AtomFactory::CreateAtomFromStream in Core/Ap4AtomFactory.cpp in Bento4 version 1.5.0-617 has missing NULL checks, leading to a NULL pointer dereference, segmentation fault, and application crash in AP4Atom::SetType in Core/Ap4Atom.h...
CVE-2017-14643
The AP4HdlrAtom class in Core/Ap4HdlrAtom.cpp in Bento4 version 1.5.0-617 uses an incorrect character data type, leading to a heap-based buffer over-read and application crash in AP4BytesToUInt32BE in Core/Ap4Utils.h...
CVE-2017-14642
CVE-2017-14642 involves Bento4, specifically the AP4_HdlrAtom class in version 1.5.0-617. The issue is a NULL pointer dereference that leads to a segmentation fault in AP4_StdcFileByteStream::ReadPartial, resulting in remote denial of service. The connected sources confirm the affected component ...
CVE-2017-14641
A NULL pointer dereference was discovered in the AP4DataAtom class in MetaData/Ap4MetaData.cpp in Bento4 version 1.5.0-617. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service...