61 matches found
CVE-2019-20092
An issue was discovered in Bento4 1.5.1.0. There is a NULL pointer dereference in AP4Descriptor::GetTag in mp42ts when called from AP4EsDescriptor::GetDecoderConfigDescriptor in Ap4EsDescriptor.cpp...
CVE-2019-20091
An issue was discovered in Bento4 1.5.1.0. There is a NULL pointer dereference in AP4Descriptor::GetTag in mp42ts when called from AP4DecoderConfigDescriptor::GetDecoderSpecificInfoDescriptor in Ap4DecoderConfigDescriptor.cpp...
CVE-2019-20091
CVE-2019-20091 affects Bento4 1.5.1.0. The issue is a NULL pointer dereference in AP4_Descriptor::GetTag within mp42ts, triggered via AP4_DecoderConfigDescriptor::GetDecoderSpecificInfoDescriptor in Ap4DecoderConfigDescriptor.cpp. Documented impact includes potential instability (CVSS metrics ind...
CVE-2019-20092
Bento4 1.5.1.0 is affected by CVE-2019-20092 due to a NULL pointer dereference in AP4_Descriptor::GetTag within mp42ts, triggered via AP4_EsDescriptor::GetDecoderConfigDescriptor (Ap4EsDescriptor.cpp). The connected sources specify the exact functions and file path involved, but do not provide a ...
CVE-2019-20092
An issue was discovered in Bento4 1.5.1.0. There is a NULL pointer dereference in AP4Descriptor::GetTag in mp42ts when called from AP4EsDescriptor::GetDecoderConfigDescriptor in Ap4EsDescriptor.cpp...
CVE-2018-14544
There exists one invalid memory read bug in AP4SampleDescription::GetFormat in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp42ts...
CVE-2018-14545
There exists one invalid memory read bug in AP4SampleDescription::GetType in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp42ts...
CVE-2018-14544
There exists one invalid memory read bug in AP4SampleDescription::GetFormat in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp42ts...
CVE-2018-14544
There exists one invalid memory read bug in AP4SampleDescription::GetFormat in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp42ts...
CVE-2018-14545
There exists one invalid memory read bug in AP4SampleDescription::GetType in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp42ts...
Design/Logic Flaw
There exists one invalid memory read bug in AP4SampleDescription::GetType in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp42ts...
UBUNTU-CVE-2018-14544
There exists one invalid memory read bug in AP4SampleDescription::GetFormat in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp42ts...
CVE-2018-14545
There exists one invalid memory read bug in AP4SampleDescription::GetType in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp42ts...
UBUNTU-CVE-2018-13846
An issue has been found in Bento4 1.5.1-624. AP4Mpeg2TsVideoSampleStream::WriteSample in Core/Ap4Mpeg2Ts.cpp has a heap-based buffer over-read after a call from Mp42Ts.cpp, a related issue to CVE-2018-14532...
Bento4 mp42ts 'AP4_AtomSampleTable::GetSample' function denial of service vulnerability
Bento4 is an open source C++ library for reading and writing MP4 files. mp42ts is one of the tools to convert MP4 files to MPEG2-TS files. A security vulnerability in the Bento4 mp42ts 'AP4AtomSampleTable::GetSample' function allows remote attackers to exploit the vulnerability by submitting a...
Bento4 mp42ts 'AP4_AvccAtom::InspectFields' function denial of service vulnerability
Bento4 is an open source C++ library for reading and writing MP4 files. mp42ts is one of the tools to convert MP4 files to MPEG2-TS files. A security vulnerability in the 'AP4AvccAtom::InspectFields' function in the Bento4 mp42ts Core/Ap4AvccAtom.cpp file allows remote attackers to exploit the...
CVE-2017-12474
The AP4AtomSampleTable::GetSample function in Core/Ap4AtomSampleTable.cpp in Bento4 mp42ts before 1.5.0-616 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted mp4 file...
UBUNTU-CVE-2017-12474
The AP4AtomSampleTable::GetSample function in Core/Ap4AtomSampleTable.cpp in Bento4 mp42ts before 1.5.0-616 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted mp4 file...
CVE-2017-12474
The AP4AtomSampleTable::GetSample function in Core/Ap4AtomSampleTable.cpp in Bento4 mp42ts before 1.5.0-616 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted mp4 file...
CVE-2017-12474
The AP4AtomSampleTable::GetSample function in Core/Ap4AtomSampleTable.cpp in Bento4 mp42ts before 1.5.0-616 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted mp4 file...