37 matches found
Fedora 30 : libmp4v2 (2019-1030f4816a)
Fix crash made by the new patches ---- Fix https://nvd.nist.gov/vuln/detail/CVE-2018-14446 https://nvd.nist.gov/vuln/detail/CVE-2018-14403 https://nvd.nist.gov/vuln/detail/CVE-2018-14379 https://nvd.nist.gov/vuln/detail/CVE-2018-14326 https://nvd.nist.gov/vuln/detail/CVE-2018-14325...
Fedora 31 : libmp4v2 (2019-d53d4a79ac)
Fix crash made by the new patches ---- Fix https://nvd.nist.gov/vuln/detail/CVE-2018-14446 https://nvd.nist.gov/vuln/detail/CVE-2018-14403 https://nvd.nist.gov/vuln/detail/CVE-2018-14379 https://nvd.nist.gov/vuln/detail/CVE-2018-14326 https://nvd.nist.gov/vuln/detail/CVE-2018-14325...
[SECURITY] Fedora 31 Update: libmp4v2-2.1.0-0.19.trunkREV507.fc31
The libmp4v2 library provides an abstraction layer for working with files using the mp4 container format. This library is developed by mpeg4ip project and is an exact copy of the library distributed in the mpeg4ip package...
MGASA-2019-0048 Updated libmp4v2 packages fix security vulnerability
This release address a potential security issue in libmp4v2 for Mageia 6: CVE-2018-14054: libmp4v2: Double free in the MP4StringProperty class in mp4property.cpp...
Updated libmp4v2 packages fix security vulnerability
This release address a potential security issue in libmp4v2 for Mageia 6: CVE-2018-14054: libmp4v2: Double free in the MP4StringProperty class in mp4property.cpp...
CVE-2018-17236
The function MP4Free in mp4property.cpp in libmp4v2 2.1.0 internally calls free on a invalid pointer, raising a SIGABRT signal...
CVE-2018-17236
The function MP4Free in mp4property.cpp in libmp4v2 2.1.0 internally calls free on a invalid pointer, raising a SIGABRT signal...
UBUNTU-CVE-2018-17236
The function MP4Free in mp4property.cpp in libmp4v2 2.1.0 internally calls free on a invalid pointer, raising a SIGABRT signal...
PT-2018-13961 · Videolan · Libmp4V2
Name of the Vulnerable Software and Affected Versions: libmp4v2 version 2.1.0 Description: The issue arises from the function MP4Free in mp4property.cpp, which internally calls free on an invalid pointer. This results in a SIGABRT signal being raised. Recommendations: For libmp4v2 version 2.1.0,...
CVE-2018-17235
The CVE-2018-17235 entry concerns libmp4v2 version 2.1.0. The flaw resides in mp4v2::impl::MP4Track::FinishSdtp() in mp4track.cpp, where mishandling of compatibleBrand while processing a crafted MP4 file leads to a heap-based buffer over-read and a denial of service. The description is consistent...
CVE-2018-17236
The concrete details show an issue in libmp4v2 2.1.0 where MP4Free() frees an invalid pointer, causing a SIGABRT crash. Affected component: libmp4v2 (mp4property.cpp). Root cause: freeing a corrupted/invalid pointer inside MP4Free(). Impact: process crash (SIGABRT); no exploitation details provid...
CVE-2018-17236
The function MP4Free in mp4property.cpp in libmp4v2 2.1.0 internally calls free on a invalid pointer, raising a SIGABRT signal...
CVE-2018-17236
Removed by vendor...
CVE-2018-14054: LibMP4v2 MP4StringProperty Handling Double Free Vulnerability
LibMP4v2 is an open source MP4 processing library, designed to create and modify MP4 files as defined by ISO-IEC:14496-1:2001 MPEG-4 Systems. Originally discovered by Ruikai Liu, a double free vulnerability was found in the MP4StringProperty code. While parsing MP4 atoms, it is possible to cause ...
Information disclosure
libmp4v2.dll in Winamp 5.02 through 5.34 allows user-assisted remote attackers to execute arbitrary code via a certain .MP4 file. NOTE: some of these details are obtained from third party information...
CVE-2007-2498
CVE-2007-2498 affects Winamp for Windows (versions 5.02–5.34). A flaw in the MP4 handling in libmp4v2.dll allows a user‑assisted remote attacker to execute arbitrary code by opening a crafted MP4 file, due to improper parsing. The vulnerability can enable full control over the affected host (as d...
CVE-2007-2498
libmp4v2.dll in Winamp 5.02 through 5.34 allows user-assisted remote attackers to execute arbitrary code via a certain .MP4 file. NOTE: some of these details are obtained from third party information...