Bento4 缓冲区错误漏洞

Bento4 is an open source C++ library for reading and writing MP4 files. A buffer error vulnerability exists in Bento4 v1.6.0-639, which stems from a heap overflow in the AP4Atom::TypeFromString function of the mp4tag component, and can be exploited by an attacker to compromise the confidentiality...

PT-2022-25863 · Bento4 · Bento4

Name of the Vulnerable Software and Affected Versions: Bento4 version 1.6.0-639 Description: A heap overflow issue was discovered in the AP4 Atom::TypeFromString function within the mp4tag component. Recommendations: For Bento4 version 1.6.0-639, consider avoiding the use of the AP4...