7 matches found
EUVD-2018-6248
Malware in sbrugna...
EUVD-2018-6247
Malware in sbrugna...
EUVD-2018-5980
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2018-14326
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In MP4v2 2.0.0, there is an integer overflow with resultant memory corruption when resizing MP4Array for the ftyp atom in mp4array.h. CVE-2018-14326 Note that...
Type confusion
MP4NameFirstMatches in mp4util.cpp in MP4v2 2.0.0 mishandles substrings of atom names, leading to use of an inappropriate data type for associated atoms. The resulting type confusion can cause out-of-bounds memory access...
CVE-2018-14379
MP4Atom::factory in mp4atom.cpp in MP4v2 2.0.0 incorrectly uses the MP4ItemAtom data type in a certain case where MP4DataAtom is required, which allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via a crafted MP4 file, because access ...
CVE-2018-14325
In MP4v2 2.0.0, there is an integer underflow with resultant memory corruption when parsing MP4Atom in mp4atom.cpp...