Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2018-17235

Опубликовано: 20 сент. 2018
Источник: ubuntu
Приоритет: low
CVSS2: 4.3
CVSS3: 6.5

Описание

The function mp4v2::impl::MP4Track::FinishSdtp() in mp4track.cpp in libmp4v2 2.1.0 mishandles compatibleBrand while processing a crafted mp4 file, which leads to a heap-based buffer over-read, causing denial of service.

РелизСтатусПримечание
bionic

ignored

end of standard support, was needed
cosmic

ignored

end of life
devel

DNE

disco

DNE

eoan

DNE

esm-apps/bionic

needed

esm-apps/xenial

needed

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needs-triage]
esm-infra/focal

DNE

focal

DNE

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2018-17235

CVSS3: 6.5
nvd
больше 7 лет назад

The function mp4v2::impl::MP4Track::FinishSdtp() in mp4track.cpp in libmp4v2 2.1.0 mishandles compatibleBrand while processing a crafted mp4 file, which leads to a heap-based buffer over-read, causing denial of service.

debian логотип

CVE-2018-17235

CVSS3: 6.5
debian
больше 7 лет назад

The function mp4v2::impl::MP4Track::FinishSdtp() in mp4track.cpp in li ...

github логотип

GHSA-wgfq-v6c2-9q4f

CVSS3: 6.5
github
больше 3 лет назад

The function mp4v2::impl::MP4Track::FinishSdtp() in mp4track.cpp in libmp4v2 2.1.0 mishandles compatibleBrand while processing a crafted mp4 file, which leads to a heap-based buffer over-read, causing denial of service.

4.3 Medium

CVSS2

6.5 Medium

CVSS3