Linux Distros Unpatched Vulnerability : CVE-2018-14589

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in Bento4 1.5.1-624. AP4Mp4AudioDsiParser::ReadBits in Codecs/Ap4Mp4AudioInfo.cpp has a heap-based buffer over-read. CVE-2018-14589...

PT-2022-24108 · Axiomatic · Bento4

Name of the Vulnerable Software and Affected Versions: Axiomatic Bento4 version 5e7bb34 Description: A critical issue was found in the function AP4 Mp4AudioDsiParser::ReadBits of the file Ap4Mp4AudioInfo.cpp, which is part of the mp4hls component. This issue leads to a heap-based buffer overflow...

Bento4 缓冲区错误漏洞

Bento4 is an open source C++ library for reading and writing MP4 files. A security vulnerability exists in Bento4 version 5e7bb34, which stems from an affected AP4Mp4AudioDsiParser::ReadBits function in the Ap4Mp4AudioInfo.cpp file in the component mp4hls, which may result in a heap-based buffer...

Bento4 缓冲区错误漏洞

Bento4 is an open source C++ library for reading and writing MP4 files. A buffer overflow vulnerability exists in Bento4 version v1.6.0-639, which stems from a heap overflow in the AP4BitReader::ReadBits function of the mp4mux component. An attacker could exploit the vulnerability to affect the...

Bento4 Buffer Overflow Vulnerability

Bento4 is an open source C++ library for reading and writing MP4 files. A buffer overflow vulnerability exists in the AP4Mp4AudioDsiParser::ReadBits of the Codecs/Ap4Mp4AudioInfo.cpp file in Bento4 version 1.5.1-624. An attacker can exploit this vulnerability to cause heap buffer out-of-bounds...