3 matches found
CVE-2024-24155
Bento4 v1.5.1-628 contains a Memory leak on AP4Movie::AP4Movie, parsing tracks and added into mTracks list, but mp42aac cannot correctly delete when we got an no audio track found error. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted mp4 file...
Bento4 安全漏洞
Bento4 is an open source C++ library for reading and writing MP4 files. Bento4 suffers from a memory leak vulnerability that originates from AP4Movie::AP4Movie not freeing or failing to free dynamically allocated heap memory, which can be exploited by an attacker to cause a denial of service...
CVE-2024-24155
CVE-2024-24155 affects Bento4 v1.5.1-628. The issue is a memory leak in the AP4_Movie(AP4_Movie) constructor during track parsing when adding tracks to the internal m_Tracks list. If an error occurs due to no audio track found, mp42aac cannot correctly delete the allocated memory, enabling a Deni...