EUVD-2021-28097

Malicious code in bioql PyPI...

CVE-2022-40738

An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4DescriptorListWriter::Action in Core/Ap4Descriptor.h, called from AP4EsDescriptor::WriteFields and AP4Expandable::Write...

Null pointer dereference

In Bento4 1.6.0-638, there is a null pointer reference in the function AP4DescriptorListInspector::Action function in Ap4Descriptor.h:124 , as demonstrated by GPAC. This can cause a denial of service DOS...

in axiomatic-systems/bento4

✍️ Description NULL pointer dereference of Ap4Descriptor.h in function GetTag 🕵️‍♂️ Proof of Concept Verification steps： 1.Get the source code of Bento4 2.Compile the Bento4 bash $ cd Bento4 $ mkdir checkbuild && cd checkbuild $ cmake ../ -DCMAKECCOMPILER=clang -DCMAKECXXCOMPILER=clang++...

CVE-2019-17454

Bento4 1.5.1.0 has a NULL pointer dereference in AP4Descriptor::GetTag in Core/Ap4Descriptor.h, related to AP4StsdAtom::GetSampleDescription in Core/Ap4StsdAtom.cpp, as demonstrated by mp4info...

CVE-2019-17453

CVE-2019-17453 affects Bento4 1.5.1.0: a NULL pointer dereference in AP4_DescriptorListWriter::Action, related to AP4_IodsAtom::WriteFields in Core/Ap4IodsAtom.cpp. The issue is in a C++ library used for ISO-MP4 read/write. Impact described as a segfault/NULL dereference; no public remediation de...

CVE-2019-17453

Bento4 1.5.1.0 has a NULL pointer dereference in AP4DescriptorListWriter::Action in Core/Ap4Descriptor.h, related to AP4IodsAtom::WriteFields in Core/Ap4IodsAtom.cpp, as demonstrated by mp4encrypt or mp4compact...

CVE-2019-17454

CVE-2019-17454 affects Bento4 1.5.1.0, with a NULL pointer dereference in AP4_Descriptor::GetTag (Core/Ap4Descriptor.h) related to AP4_StsdAtom::GetSampleDescription (Core/Ap4StsdAtom.cpp), as demonstrated by mp4info. Connected sources provide the root cause and file/function details; no patch/ve...