Lucene search
K

8 matches found

Mageia
Mageia
added 2020/01/28 11:32 a.m.19 views

Updated libmp4v2 packages fix security vulnerabilities

Updated libmp4v2 packages fix security vulnerabilities: The libmp4v2 library through version 2.1.0 is vulnerable to an integer underflow when parsing an MP4Atom in mp4atom.cpp. An attacker could exploit this to cause a denial of service via crafted MP4 file CVE-2018-14325. The libmp4v2 library...

9.8CVSS5.4AI score0.02596EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2019/11/21 12:0 a.m.19 views

Fedora Update for libmp4v2 FEDORA-2019-1030f4816a

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9.3AI score0.02596EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2019/11/18 12:0 a.m.21 views

Fedora 31 : libmp4v2 (2019-d53d4a79ac)

Fix crash made by the new patches ---- Fix https://nvd.nist.gov/vuln/detail/CVE-2018-14446 https://nvd.nist.gov/vuln/detail/CVE-2018-14403 https://nvd.nist.gov/vuln/detail/CVE-2018-14379 https://nvd.nist.gov/vuln/detail/CVE-2018-14326 https://nvd.nist.gov/vuln/detail/CVE-2018-14325...

9.8CVSS7.7AI score0.02596EPSS
Exploits4References8
Tenable Nessus
Tenable Nessus
added 2019/11/18 12:0 a.m.23 views

Fedora 30 : libmp4v2 (2019-1030f4816a)

Fix crash made by the new patches ---- Fix https://nvd.nist.gov/vuln/detail/CVE-2018-14446 https://nvd.nist.gov/vuln/detail/CVE-2018-14403 https://nvd.nist.gov/vuln/detail/CVE-2018-14379 https://nvd.nist.gov/vuln/detail/CVE-2018-14326 https://nvd.nist.gov/vuln/detail/CVE-2018-14325...

9.8CVSS7.7AI score0.02596EPSS
Exploits4References8
Tenable Nessus
Tenable Nessus
added 2019/11/18 12:0 a.m.25 views

Fedora 29 : libmp4v2 (2019-6469ad8129)

Fix crash made by the new patches ---- Fix https://nvd.nist.gov/vuln/detail/CVE-2018-14446 https://nvd.nist.gov/vuln/detail/CVE-2018-14403 https://nvd.nist.gov/vuln/detail/CVE-2018-14379 https://nvd.nist.gov/vuln/detail/CVE-2018-14326 https://nvd.nist.gov/vuln/detail/CVE-2018-14325...

9.8CVSS7.7AI score0.02596EPSS
Exploits4References8
OSV
OSV
added 2018/07/18 5:29 a.m.22 views

CVE-2018-14379

MP4Atom::factory in mp4atom.cpp in MP4v2 2.0.0 incorrectly uses the MP4ItemAtom data type in a certain case where MP4DataAtom is required, which allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via a crafted MP4 file, because access ...

8.8CVSS7.5AI score
Exploits0References5
UbuntuCve
UbuntuCve
added 2018/07/18 5:29 a.m.14 views

CVE-2018-14379

MP4Atom::factory in mp4atom.cpp in MP4v2 2.0.0 incorrectly uses the MP4ItemAtom data type in a certain case where MP4DataAtom is required, which allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via a crafted MP4 file, because access ...

8.8CVSS7.2AI score0.02179EPSS
Exploits0References2
CVE
CVE
added 2018/07/18 12:0 a.m.50 views

CVE-2018-14379

CVE-2018-14379 occurs in MP4v2 2.0.0 where MP4Atom::factory uses MP4ItemAtom instead of MP4DataAtom in certain cases, causing type confusion and memory layout mismatches that enable DoS via a crafted MP4 file. Public documentation confirms this vulnerability exists in the libmp4v2 library and rel...

8.8CVSS9.3AI score0.02179EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder