Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2018-14403

Опубликовано: 19 июл. 2018
Источник: debian

Описание

MP4NameFirstMatches in mp4util.cpp in MP4v2 2.0.0 mishandles substrings of atom names, leading to use of an inappropriate data type for associated atoms. The resulting type confusion can cause out-of-bounds memory access.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
mp4v2removedpackage
mp4v2no-dsastretchpackage
mp4v2no-dsajessiepackage

Примечания

  • https://www.openwall.com/lists/oss-security/2018/07/18/3

Связанные уязвимости

ubuntu логотип

CVE-2018-14403

CVSS3: 9.8
ubuntu
больше 7 лет назад

MP4NameFirstMatches in mp4util.cpp in MP4v2 2.0.0 mishandles substrings of atom names, leading to use of an inappropriate data type for associated atoms. The resulting type confusion can cause out-of-bounds memory access.

nvd логотип

CVE-2018-14403

CVSS3: 9.8
nvd
больше 7 лет назад

MP4NameFirstMatches in mp4util.cpp in MP4v2 2.0.0 mishandles substrings of atom names, leading to use of an inappropriate data type for associated atoms. The resulting type confusion can cause out-of-bounds memory access.

github логотип

GHSA-cq9c-6m4q-fv48

CVSS3: 9.8
github
больше 3 лет назад

MP4NameFirstMatches in mp4util.cpp in MP4v2 2.0.0 mishandles substrings of atom names, leading to use of an inappropriate data type for associated atoms. The resulting type confusion can cause out-of-bounds memory access.