CVE-2018-14589
Bento4 1.5.1-624 contains a heap-based buffer over-read in AP4_Mp4AudioDsiParser::ReadBits (Codecs/Ap4Mp4AudioInfo.cpp). The issue is confirmed across multiple sources (NVD/CVE-2018-14589, CNVD/UBUNTU, osv, etc.), but the connected documents do not provide an approved remediation or patch details...