CVE-2018-14403 log
Source |
|
Severity | High |
Remote | No |
Type | Information disclosure |
Description | MP4NameFirstMatches in mp4util.cpp in MP4v2 2.0.0 mishandles substrings of atom names, leading to use of an inappropriate data type for associated atoms. The resulting type confusion can cause out-of-bounds memory access. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-848 | libmp4v2 | 2.0.0-5 | 4.1.3-1 | High | Fixed |
References |
---|
https://www.openwall.com/lists/oss-security/2018/07/18/3 |