Linux Distros Unpatched Vulnerability : CVE-2018-17235

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The function mp4v2::impl::MP4Track::FinishSdtp in mp4track.cpp in libmp4v2 2.1.0 mishandles compatibleBrand while processing a crafted mp4 file, which leads to ...

Linux Distros Unpatched Vulnerability : CVE-2023-33720

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mp4v2 v2.1.2 was discovered to contain a memory leak via the class MP4BytesProperty. CVE-2023-33720 Note that Nessus relies on the presence of the package as...

UBUNTU-CVE-2023-33717

mp4v2 v2.1.3 was discovered to contain a memory leak when a method calling MP4File::ReadBytes had allocated memory but did not catch exceptions thrown by ReadBytes...

MP4v2 安全漏洞

MP4v2 is a library for creating, modifying, and reading MP4 files by enzo1982 individual developers. A security vulnerability exists in MP4v2 version 2.1.3, which stems from a memory leak in mp4fileio...

MP4v2 安全漏洞

MP4v2 is a library for creating, modifying, and reading MP4 files by the individual developer enzo1982. A security vulnerability exists in MP4v2 version v2.1.3, which stems from the discovery of a contained memory leak via the MP4StringProperty class in mp4property.cpp...

UBUNTU-CVE-2023-33720

mp4v2 v2.1.2 was discovered to contain a memory leak via the class MP4BytesProperty...

PT-2023-3046 · Mp4V2 · Mp4V2

Name of the Vulnerable Software and Affected Versions: mp4v2 version 2.1.3 Description: The issue is related to a memory leak via the MP4StringProperty class in the mp4v2 library, which can be exploited by a remote attacker to cause a denial of service. The vulnerability is also associated with t...

MP4v2 缓冲区错误漏洞

MP4v2 is a library for creating, modifying and reading MP4 files by the individual developer enzo1982. A security vulnerability exists in MP4v2 version v2.0.0, which originated from the discovery of the mp4v2::impl::MP4StringProperty::MP4StringProperty function via src/mp4property.cpp that contai...

MP4v2 安全漏洞

MP4v2 is a library for creating, modifying and reading MP4 files by the individual developer enzo1982. A security vulnerability exists in MP4v2 version 2.1.2, which stems from a security issue in the function mp4v2::impl::MP4Track::GetSampleFileOffset in the file mp4track.cpp, resulting in a deni...

CVE-2018-17235

The function mp4v2::impl::MP4Track::FinishSdtp in mp4track.cpp in libmp4v2 2.1.0 mishandles compatibleBrand while processing a crafted mp4 file, which leads to a heap-based buffer over-read, causing denial of service...

UBUNTU-CVE-2018-17235

The function mp4v2::impl::MP4Track::FinishSdtp in mp4track.cpp in libmp4v2 2.1.0 mishandles compatibleBrand while processing a crafted mp4 file, which leads to a heap-based buffer over-read, causing denial of service...

PT-2018-13960 · Videolan · Libmp4V2

Name of the Vulnerable Software and Affected Versions: libmp4v2 version 2.1.0 Description: The issue arises from the function mp4v2::impl::MP4Track::FinishSdtp in mp4track.cpp, which mishandles compatibleBrand while processing a crafted mp4 file. This leads to a heap-based buffer over-read,...

UBUNTU-CVE-2018-14379

MP4Atom::factory in mp4atom.cpp in MP4v2 2.0.0 incorrectly uses the MP4ItemAtom data type in a certain case where MP4DataAtom is required, which allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via a crafted MP4 file, because access ...

MP4v2 Integer Overflow Vulnerability

MP4v2 is an open source library written in C++ for handling MP4 containers. An integer overflow vulnerability exists in MP4v2 version 2.0.0. An attacker could exploit this vulnerability to cause memory corruption...

MP4v2 Denial of Service Vulnerability

MP4v2 is an open source library written in C++ for handling MP4 containers. A security vulnerability exists in the MP4Atom class of the mp4atom.cpp file in MP4v2 2.0.0 and earlier versions, which stems from the program's failure to properly handle Entry Number validation. A remote attacker can...