Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Bento4
(Axiosys)Repositories | https://github.com/axiomatic-systems/Bento4 |
#Vulnerabilities | 162 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2022-10-03 | CVE-2022-41419 | Bento4 v1.6.0-639 was discovered to contain a memory leak via the AP4_Processor::Process function in the mp4encrypt binary. | Bento4 | 6.5 | ||
2022-10-03 | CVE-2022-41423 | Bento4 v1.6.0-639 was discovered to contain a segmentation violation in the mp4fragment component. | Bento4 | 6.5 | ||
2022-10-03 | CVE-2022-41424 | Bento4 v1.6.0-639 was discovered to contain a memory leak via the AP4_SttsAtom::Create function in mp42hls. | Bento4 | 6.5 | ||
2022-10-03 | CVE-2022-41425 | Bento4 v1.6.0-639 was discovered to contain a segmentation violation via the AP4_Processor::ProcessFragments function in mp4decrypt. | Bento4 | 6.5 | ||
2022-10-03 | CVE-2022-41426 | Bento4 v1.6.0-639 was discovered to contain a memory leak via the AP4_AtomFactory::CreateAtomFromStream function in mp4split. | Bento4 | 6.5 | ||
2022-10-03 | CVE-2022-41427 | Bento4 v1.6.0-639 was discovered to contain a memory leak in the AP4_AvcFrameParser::Feed function in mp4mux. | Bento4 | 6.5 | ||
2022-10-03 | CVE-2022-41428 | Bento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_BitReader::ReadBits function in mp4mux. | Bento4 | 8.8 | ||
2022-10-03 | CVE-2022-41429 | Bento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_Atom::TypeFromString function in mp4tag. | Bento4 | 8.8 | ||
2022-10-03 | CVE-2022-41430 | Bento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_BitReader::ReadBit function in mp4mux. | Bento4 | 8.8 | ||
2022-10-26 | CVE-2022-3662 | A vulnerability was found in Axiomatic Bento4. It has been declared as critical. This vulnerability affects the function GetOffset of the file Ap4Sample.h of the component mp42hls. The manipulation leads to use after free. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-212002 is the identifier assigned to this vulnerability. | Bento4 | 7.8 |