Bento4 Denial of Service Vulnerability (CNVD-2023-00386)

A denial-of-service vulnerability exists in Bento4, an open source C library for reading and writing MP4 files. The vulnerability stems from a null pointer dereference in the AP4DecoderConfigDescriptor::WriteFields component of /Core/Ap4Descriptor.h. An attacker could exploit this vulnerability t...

CVE-2019-20091

An issue was discovered in Bento4 1.5.1.0. There is a NULL pointer dereference in AP4Descriptor::GetTag in mp42ts when called from AP4DecoderConfigDescriptor::GetDecoderSpecificInfoDescriptor in Ap4DecoderConfigDescriptor.cpp...

CVE-2019-20091

An issue was discovered in Bento4 1.5.1.0. There is a NULL pointer dereference in AP4Descriptor::GetTag in mp42ts when called from AP4DecoderConfigDescriptor::GetDecoderSpecificInfoDescriptor in Ap4DecoderConfigDescriptor.cpp...

Null pointer dereference

An issue was discovered in Bento4 1.5.1.0. There is a NULL pointer dereference in AP4Descriptor::GetTag in mp42ts when called from AP4DecoderConfigDescriptor::GetDecoderSpecificInfoDescriptor in Ap4DecoderConfigDescriptor.cpp...