CVE-2024-37017

asdcplib aka AS-DCP Lib 2.13.1 has a heap-based buffer over-read in ASDCP::TimedText::MXFReader::hReader::MDtoTimedTextTDesc in ASDCPTimedText.cpp in libasdcp.so...

CVE-2024-37017

CVE-2024-37017 affects asdcplib (AS-DCP Lib) 2.13.1 and involves a heap-based buffer over-read in ASDCP::TimedText::MXFReader::h__Reader::MD_to_TimedText_TDesc within AS_DCP_TimedText.cpp in libasdcp.so. The CVSSv3.1 base score is 8.1 (HIGH), with NETWORK attack vector, LOW attack complexity, no ...