CVE-2018-14403 log

Source
Severity High
Remote No
Type Information disclosure
Description
MP4NameFirstMatches in mp4util.cpp in MP4v2 2.0.0 mishandles substrings of atom names, leading to use of an inappropriate data type for associated atoms. The resulting type confusion can cause out-of-bounds memory access.
Group Package Affected Fixed Severity Status Ticket
AVG-848 libmp4v2 2.0.0-5 4.1.3-1 High Fixed
References
https://www.openwall.com/lists/oss-security/2018/07/18/3