2 matches found
PYSEC-2026-1306 Reverb use after free vulnerability
There exists a use after free vulnerability in Reverb. Reverb supports the VARIANT datatype, which is supposed to represent an arbitrary object in C++. When a tensor proto of type VARIANT is unpacked, memory is first allocated to store the entire tensor, and a ctor is called on each instance...
Bento4 Buffer Overflow Vulnerability (CNVD-2019-07062)
Bento4 is an open source C++ library for reading and writing MP4 files. A buffer overflow vulnerability exists in the 'AP4Mpeg2TsAudioSampleStream::WriteSample' function in the Core/Ap4Mpeg2Ts.cpp file in Bento4 version 1.5.1-624, which can be exploited by an attacker to can be exploited to cause...