VYPR

Bento4

by Bento4

Source repositories

CVEs (169)

  • CVE-2022-35165Aug 18, 2022
    risk 0.00cvss epss 0.00

    An issue in AP4_SgpdAtom::AP4_SgpdAtom() of Bento4-1.6.0-639 allows attackers to cause a Denial of Service (DoS) via a crafted mp4 input.

  • CVE-2021-40943Jun 28, 2022
    risk 0.00cvss epss 0.01

    In Bento4 1.6.0-638, there is a null pointer reference in the function AP4_DescriptorListInspector::Action function in Ap4Descriptor.h:124 , as demonstrated by GPAC. This can cause a denial of service (DOS).

  • CVE-2021-40941Jun 27, 2022
    risk 0.00cvss epss 0.01

    In Bento4 1.6.0-638, there is an allocator is out of memory in the function AP4_Array<AP4_TrunAtom::Entry>::EnsureCapacity in Ap4Array.h:172, as demonstrated by GPAC. This can cause a denial of service (DOS).

  • CVE-2022-31287Jun 10, 2022
    risk 0.00cvss epss 0.01

    An issue was discovered in Bento4 v1.2. There is an allocation size request error in /Ap4RtpAtom.cpp.

  • CVE-2022-31285Jun 10, 2022
    risk 0.00cvss epss 0.01

    An issue was discovered in Bento4 1.2. The allocator is out of memory in /Source/C++/Core/Ap4Array.h.

  • CVE-2022-31282Jun 10, 2022
    risk 0.00cvss epss 0.01

    Bento4 MP4Dump v1.2 was discovered to contain a segmentation violation via an unknown address at /Source/C++/Core/Ap4DataBuffer.cpp:175.

  • CVE-2022-29017May 16, 2022
    risk 0.00cvss epss 0.01

    Bento4 v1.6.0.0 was discovered to contain a segmentation fault via the component /x86_64/multiarch/strlen-avx2.S.

  • CVE-2022-27607Mar 21, 2022
    risk 0.00cvss epss 0.01

    Bento4 1.6.0-639 has a heap-based buffer over-read in the AP4_HvccAtom class, a different issue than CVE-2018-14531.

  • CVE-2021-32265Sep 20, 2021
    risk 0.00cvss epss 0.02

    An issue was discovered in Bento4 through v1.6.0-637. A global-buffer-overflow exists in the function AP4_MemoryByteStream::WritePartial() located in Ap4ByteStream.cpp. It allows an attacker to cause code execution or information disclosure.

  • CVE-2020-23334Aug 17, 2021
    risk 0.00cvss epss 0.01

    A WRITE memory access in the AP4_NullTerminatedStringAtom::AP4_NullTerminatedStringAtom component of Bento4 version 06c39d9 can lead to a segmentation fault.

  • CVE-2020-23333Aug 17, 2021
    risk 0.00cvss epss 0.01

    A heap-based buffer overflow exists in the AP4_CttsAtom::AP4_CttsAtom component located in /Core/Ap4Utils.h of Bento4 version 06c39d9. This can lead to a denial of service (DOS).

  • CVE-2020-23331Aug 17, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in Bento4 version 06c39d9. A NULL pointer dereference exists in the AP4_DescriptorListWriter::Action component located in /Core/Ap4Descriptor.h. It allows an attacker to cause a denial of service (DOS).

  • CVE-2020-23332Aug 17, 2021
    risk 0.00cvss epss 0.01

    A heap-based buffer overflow exists in the AP4_StdcFileByteStream::ReadPartial component located in /StdC/Ap4StdCFileByteStream.cpp of Bento4 version 06c39d9. This issue can lead to a denial of service (DOS).

  • CVE-2020-21066Aug 13, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in Bento4 v1.5.1.0. There is a heap-buffer-overflow in AP4_Dec3Atom::AP4_Dec3Atom at Ap4Dec3Atom.cpp, leading to a denial of service (program crash), as demonstrated by mp42aac.

  • CVE-2021-35307Aug 5, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in Bento4 through v1.6.0-636. A NULL pointer dereference exists in the AP4_DescriptorFinder::Test component located in /Core/Ap4Descriptor.h. It allows an attacker to cause a denial of service (DOS).

  • CVE-2020-19722Jul 13, 2021
    risk 0.00cvss epss 0.01

    An unhandled memory allocation failure in Core/Ap4Atom.cpp of Bento 1.5.1-628 causes a direct copy to NULL pointer dereference, leading to a denial of service (DOS).

  • CVE-2020-19720Jul 13, 2021
    risk 0.00cvss epss 0.01

    An unhandled memory allocation failure in Core/AP4IkmsAtom.cpp of Bento 1.5.1-628 causes a NULL pointer dereference, leading to a denial of service (DOS).

  • CVE-2020-19718Jul 13, 2021
    risk 0.00cvss epss 0.01

    An unhandled memory allocation failure in Core/Ap4Atom.cpp of Bento 1.5.1-628 causes a NULL pointer dereference, leading to a denial of service (DOS).

  • CVE-2020-23912Apr 21, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in Bento4 through v1.6.0-637. A NULL pointer dereference exists in the function AP4_StszAtom::GetSampleSize() located in Ap4StszAtom.cpp. It allows an attacker to cause Denial of Service.

  • CVE-2019-20090Dec 30, 2019
    risk 0.00cvss epss 0.01

    An issue was discovered in Bento4 1.5.1.0. There is a use-after-free in AP4_Sample::GetOffset in Core/Ap4Sample.h when called from Ap4LinearReader.cpp.

Page 7 of 9