CVE-2019-8380
Bento4 1.5.1-628 contains a NULL pointer dereference in AP4_Track::GetSampleIndexForTimeStampMs() (Core/Ap4Track.cpp). A crafted MP4 file sent to the mp4audioclip binary can trigger a crash, causing a Denial of Service (segmentation fault) and possibly other impact. The provided connected sources...