Описание
An out-of-bounds read in File__Analyze::Get_L8 in File__Analyze_Buffer.cpp in MediaInfoLib in MediaArea MediaInfo 18.12 leads to a crash.
An out-of-bounds read in File__Analyze::Get_L8 in File__Analyze_Buffer.cpp in MediaInfoLib in MediaArea MediaInfo 18.12 leads to a crash.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2019-11373
- https://github.com/MediaArea/MediaInfoLib/pull/1111
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B752JY7TABWSVYHFATD37XDD6PVIO5C6
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BC4Z4BGGMSSVTRKVD3OCW4JLH3K2ZNGP
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BYKBAXS35KFMU4YLO37VGDIKHEL5HSPO
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NJYASICJ2VUUNGHDBB62FGYQN2SNITM5
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XOA4AWTRLWVQBZZAKXXQHP7M2NK6CB3Z
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XYF5I42OBJR7HKJD2OFS6LP26I52IT3M
- https://sourceforge.net/p/mediainfo/bugs/1101
- https://usn.ubuntu.com/3988-1
- http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00069.html
- http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00083.html
- http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00028.html
Связанные уязвимости
An out-of-bounds read in File__Analyze::Get_L8 in File__Analyze_Buffer.cpp in MediaInfoLib in MediaArea MediaInfo 18.12 leads to a crash.
An out-of-bounds read in File__Analyze::Get_L8 in File__Analyze_Buffer.cpp in MediaInfoLib in MediaArea MediaInfo 18.12 leads to a crash.
An out-of-bounds read in File__Analyze::Get_L8 in File__Analyze_Buffer ...
Уязвимость функции File__Analyze::Get_L8 библиотеки чтения метаданных из медиафайлов MediaInfo, позволяющая нарушителю вызвать отказ в обслуживании
