8 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-14589
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in Bento4 1.5.1-624. AP4Mp4AudioDsiParser::ReadBits in Codecs/Ap4Mp4AudioInfo.cpp has a heap-based buffer over-read. CVE-2018-14589...
Linux Distros Unpatched Vulnerability : CVE-2018-14531
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Bento4 1.5.1-624. There is an unspecified heap-buffer-overflow crash in the AP4HvccAtom class in Core/Ap4HvccAtom.cpp. CVE-2018-14531...
Linux Distros Unpatched Vulnerability : CVE-2018-14545
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There exists one invalid memory read bug in AP4SampleDescription::GetType in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow attackers to cause a...
Bento4 Buffer Overflow Vulnerability (CNVD-2018-14699)
Bento4 is an open source C++ library for reading and writing MP4 files. A heap buffer overflow vulnerability exists in AP4AvccAtom::Create in the Core/Ap4AvccAtom.cpp file in Bento4 version 1.5.1-624. An attacker can exploit this vulnerability to cause a heap buffer out-of-bounds read...
UBUNTU-CVE-2018-14584
An issue has been discovered in Bento4 1.5.1-624. AP4AvccAtom::Create in Core/Ap4AvccAtom.cpp has a heap-based buffer over-read...
Bento4 Invalid Memory Read Vulnerability
Bento4 is a C++ class library and tool for reading and writing ISO-MP4 files. An invalid memory read vulnerability exists in AP4SampleDescription::GetType in Ap4SampleDescription.h in Bento4 1.5.1-624, which can be exploited by an attacker to cause a denial of service via specially crafted mp4...
Bento4 Null Pointer Dereference Vulnerability
Bento4 is a C++ class library and tool for reading and writing ISO-MP4 files. A null pointer dereference vulnerability exists in AP4JsonInspector::AddField in Ap4Atom.cpp in Bento4 1.5.1-624, which can be exploited by an attacker to cause a denial of service via specially crafted mp4 files...
UBUNTU-CVE-2018-13848
An issue has been found in Bento4 1.5.1-624. It is a SEGV in AP4StszAtom::GetSampleSize in Core/Ap4StszAtom.cpp...