Bento4 Ap4Array.h Denial of Service Vulnerability

Bento4 is an open source C++ library for reading and writing MP4 files. A denial of service vulnerability exists in Bento4 version 1.6.0-639, which stems from excessive memory consumption in the AP4Array ::EnsureCapacity function in Core/Ap4Array.h. The vulnerability can be exploited to cause a...

CVE-2022-41845

An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in the function AP4Array::EnsureCapacity in Core/Ap4Array.h...

UBUNTU-CVE-2021-40941

In Bento4 1.6.0-638, there is an allocator is out of memory in the function AP4Array::EnsureCapacity in Ap4Array.h:172, as demonstrated by GPAC. This can cause a denial of service DOS...

CVE-2018-20095

An issue was discovered in EnsureCapacity in Core/Ap4Array.h in Bento4 1.5.1-627. Crafted MP4 input triggers an attempt at excessive memory allocation, as demonstrated by mp42hls...

CVE-2018-20095

An issue was discovered in EnsureCapacity in Core/Ap4Array.h in Bento4 1.5.1-627. Crafted MP4 input triggers an attempt at excessive memory allocation, as demonstrated by mp42hls...

CVE-2018-20095

CVE-2018-20095 affects Bento4 1.5.1-627, where a bug in EnsureCapacity within Core/Ap4Array.h can trigger excessive memory allocation on crafted MP4 input (e.g., mp42hls). The vulnerability is tied to the AP4_Array::EnsureCapacity routine, leading to potential denial of service or resource exhaus...