CVE-2018-14403

Published: Jul 19, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

MP4NameFirstMatches in mp4util.cpp in MP4v2 2.0.0 mishandles substrings of atom names, leading to use of an inappropriate data type for associated atoms. The resulting type confusion can cause out-of-bounds memory access.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.openwall.com/lists/oss-security/2018/07/18/3

FEDORA-2019-d53d4a79ac

vendor-advisory

FEDORA-2019-1030f4816a

vendor-advisory

FEDORA-2019-6469ad8129

vendor-advisory

https://github.com/enzo1982/mp4v2/releases/tag/v2.1.0

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-14403

Description

Affected Products

References