Bento4
by Bento4
Source repositories
CVEs (169)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-41430 | 0.00 | — | 0.01 | Oct 3, 2022 | Bento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_BitReader::ReadBit function in mp4mux. | |||
| CVE-2022-41429 | 0.00 | — | 0.01 | Oct 3, 2022 | Bento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_Atom::TypeFromString function in mp4tag. | |||
| CVE-2022-41428 | 0.00 | — | 0.01 | Oct 3, 2022 | Bento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_BitReader::ReadBits function in mp4mux. | |||
| CVE-2022-41427 | 0.00 | — | 0.01 | Oct 3, 2022 | Bento4 v1.6.0-639 was discovered to contain a memory leak in the AP4_AvcFrameParser::Feed function in mp4mux. | |||
| CVE-2022-41426 | 0.00 | — | 0.01 | Oct 3, 2022 | Bento4 v1.6.0-639 was discovered to contain a memory leak via the AP4_AtomFactory::CreateAtomFromStream function in mp4split. | |||
| CVE-2022-41425 | 0.00 | — | 0.01 | Oct 3, 2022 | Bento4 v1.6.0-639 was discovered to contain a segmentation violation via the AP4_Processor::ProcessFragments function in mp4decrypt. | |||
| CVE-2022-41423 | 0.00 | — | 0.01 | Oct 3, 2022 | Bento4 v1.6.0-639 was discovered to contain a segmentation violation in the mp4fragment component. | |||
| CVE-2022-41424 | 0.00 | — | 0.01 | Oct 3, 2022 | Bento4 v1.6.0-639 was discovered to contain a memory leak via the AP4_SttsAtom::Create function in mp42hls. | |||
| CVE-2022-41419 | 0.00 | — | 0.01 | Oct 3, 2022 | Bento4 v1.6.0-639 was discovered to contain a memory leak via the AP4_Processor::Process function in the mp4encrypt binary. | |||
| CVE-2022-41845 | 0.00 | — | 0.00 | Sep 30, 2022 | An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in the function AP4_Array<AP4_ElstEntry>::EnsureCapacity in Core/Ap4Array.h. | |||
| CVE-2022-41846 | 0.00 | — | 0.00 | Sep 30, 2022 | An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in the function AP4_DataBuffer::ReallocateBuffer in Core/Ap4DataBuffer.cpp. | |||
| CVE-2022-41847 | 0.00 | — | 0.00 | Sep 30, 2022 | An issue was discovered in Bento4 1.6.0-639. A memory leak exists in AP4_StdcFileByteStream::Create(AP4_FileByteStream*, char const*, AP4_FileByteStream::Mode, AP4_ByteStream*&) in System/StdC/Ap4StdCFileByteStream.cpp. | |||
| CVE-2022-41841 | 0.00 | — | 0.00 | Sep 30, 2022 | An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_File::ParseStream in Core/Ap4File.cpp, which is called from AP4_File::AP4_File. | |||
| CVE-2022-40774 | 0.00 | — | 0.00 | Sep 18, 2022 | An issue was discovered in Bento4 through 1.6.0-639. There is a NULL pointer dereference in AP4_StszAtom::GetSampleSize. | |||
| CVE-2022-40775 | 0.00 | — | 0.00 | Sep 18, 2022 | An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_StszAtom::WriteFields. | |||
| CVE-2022-40738 | 0.00 | — | 0.01 | Sep 15, 2022 | An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_DescriptorListWriter::Action in Core/Ap4Descriptor.h, called from AP4_EsDescriptor::WriteFields and AP4_Expandable::Write. | |||
| CVE-2022-40736 | 0.00 | — | 0.01 | Sep 15, 2022 | An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in AP4_CttsAtom::Create in Core/Ap4CttsAtom.cpp. | |||
| CVE-2022-40737 | 0.00 | — | 0.01 | Sep 15, 2022 | An issue was discovered in Bento4 through 1.6.0-639. A buffer over-read exists in the function AP4_StdcFileByteStream::WritePartial located in System/StdC/Ap4StdCFileByteStream.cpp, called from AP4_ByteStream::Write and AP4_HdlrAtom::WriteFields. | |||
| CVE-2022-40438 | 0.00 | — | 0.01 | Sep 14, 2022 | Buffer overflow vulnerability in function AP4_MemoryByteStream::WritePartial in mp42aac in Bento4 v1.6.0-639, allows attackers to cause a denial of service via a crafted file. | |||
| CVE-2022-40439 | 0.00 | — | 0.01 | Sep 14, 2022 | An memory leak issue was discovered in AP4_StdcFileByteStream::Create in mp42ts in Bento4 v1.6.0-639, allows attackers to cause a denial of service via a crafted file. |
- CVE-2022-41430Oct 3, 2022risk 0.00cvss —epss 0.01
Bento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_BitReader::ReadBit function in mp4mux.
- CVE-2022-41429Oct 3, 2022risk 0.00cvss —epss 0.01
Bento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_Atom::TypeFromString function in mp4tag.
- CVE-2022-41428Oct 3, 2022risk 0.00cvss —epss 0.01
Bento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_BitReader::ReadBits function in mp4mux.
- CVE-2022-41427Oct 3, 2022risk 0.00cvss —epss 0.01
Bento4 v1.6.0-639 was discovered to contain a memory leak in the AP4_AvcFrameParser::Feed function in mp4mux.
- CVE-2022-41426Oct 3, 2022risk 0.00cvss —epss 0.01
Bento4 v1.6.0-639 was discovered to contain a memory leak via the AP4_AtomFactory::CreateAtomFromStream function in mp4split.
- CVE-2022-41425Oct 3, 2022risk 0.00cvss —epss 0.01
Bento4 v1.6.0-639 was discovered to contain a segmentation violation via the AP4_Processor::ProcessFragments function in mp4decrypt.
- CVE-2022-41423Oct 3, 2022risk 0.00cvss —epss 0.01
Bento4 v1.6.0-639 was discovered to contain a segmentation violation in the mp4fragment component.
- CVE-2022-41424Oct 3, 2022risk 0.00cvss —epss 0.01
Bento4 v1.6.0-639 was discovered to contain a memory leak via the AP4_SttsAtom::Create function in mp42hls.
- CVE-2022-41419Oct 3, 2022risk 0.00cvss —epss 0.01
Bento4 v1.6.0-639 was discovered to contain a memory leak via the AP4_Processor::Process function in the mp4encrypt binary.
- CVE-2022-41845Sep 30, 2022risk 0.00cvss —epss 0.00
An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in the function AP4_Array<AP4_ElstEntry>::EnsureCapacity in Core/Ap4Array.h.
- CVE-2022-41846Sep 30, 2022risk 0.00cvss —epss 0.00
An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in the function AP4_DataBuffer::ReallocateBuffer in Core/Ap4DataBuffer.cpp.
- CVE-2022-41847Sep 30, 2022risk 0.00cvss —epss 0.00
An issue was discovered in Bento4 1.6.0-639. A memory leak exists in AP4_StdcFileByteStream::Create(AP4_FileByteStream*, char const*, AP4_FileByteStream::Mode, AP4_ByteStream*&) in System/StdC/Ap4StdCFileByteStream.cpp.
- CVE-2022-41841Sep 30, 2022risk 0.00cvss —epss 0.00
An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_File::ParseStream in Core/Ap4File.cpp, which is called from AP4_File::AP4_File.
- CVE-2022-40774Sep 18, 2022risk 0.00cvss —epss 0.00
An issue was discovered in Bento4 through 1.6.0-639. There is a NULL pointer dereference in AP4_StszAtom::GetSampleSize.
- CVE-2022-40775Sep 18, 2022risk 0.00cvss —epss 0.00
An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_StszAtom::WriteFields.
- CVE-2022-40738Sep 15, 2022risk 0.00cvss —epss 0.01
An issue was discovered in Bento4 through 1.6.0-639. A NULL pointer dereference occurs in AP4_DescriptorListWriter::Action in Core/Ap4Descriptor.h, called from AP4_EsDescriptor::WriteFields and AP4_Expandable::Write.
- CVE-2022-40736Sep 15, 2022risk 0.00cvss —epss 0.01
An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in AP4_CttsAtom::Create in Core/Ap4CttsAtom.cpp.
- CVE-2022-40737Sep 15, 2022risk 0.00cvss —epss 0.01
An issue was discovered in Bento4 through 1.6.0-639. A buffer over-read exists in the function AP4_StdcFileByteStream::WritePartial located in System/StdC/Ap4StdCFileByteStream.cpp, called from AP4_ByteStream::Write and AP4_HdlrAtom::WriteFields.
- CVE-2022-40438Sep 14, 2022risk 0.00cvss —epss 0.01
Buffer overflow vulnerability in function AP4_MemoryByteStream::WritePartial in mp42aac in Bento4 v1.6.0-639, allows attackers to cause a denial of service via a crafted file.
- CVE-2022-40439Sep 14, 2022risk 0.00cvss —epss 0.01
An memory leak issue was discovered in AP4_StdcFileByteStream::Create in mp42ts in Bento4 v1.6.0-639, allows attackers to cause a denial of service via a crafted file.
Page 6 of 9