CVE-2022-40438

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-40438

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-40438.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-40438

Related

UBUNTU-CVE-2022-40438

Published

2022-09-14T21:15:10Z

Modified

2025-01-14T11:09:41.619475Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

Buffer overflow vulnerability in function AP4_MemoryByteStream::WritePartial in mp42aac in Bento4 v1.6.0-639, allows attackers to cause a denial of service via a crafted file.

References

https://github.com/axiomatic-systems/Bento4/issues/751

Affected packages

Git / github.com/axiomatic-systems/bento4

Affected ranges

Type: GIT
Repo: https://github.com/axiomatic-systems/bento4
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

83c48e6e2a3f8e4be7ad2eddaa0639303184146d

Affected versions

v1.*

v1.4.2-584

v1.4.2-586

v1.4.2-587

v1.4.2-588

v1.4.2-589

v1.4.2-590

v1.4.2-591

v1.4.2-592

v1.4.2-593

v1.4.2-594

v1.4.3-595

v1.4.3-596

v1.4.3-597

v1.4.3-598

v1.4.3-599

v1.4.3-600

v1.4.3-601

v1.4.3-602

v1.4.3-603

v1.4.3-604

v1.4.3-605

v1.4.3-606

v1.4.3-607

v1.4.3-608

v1.5.0-609

v1.5.0-610

v1.5.0-611

v1.5.0-612

v1.5.0-613

v1.5.0-614

v1.5.0-615

v1.5.0-616

v1.5.0-617

v1.5.0-618

v1.5.0-619

v1.5.1-620

v1.5.1-621

v1.5.1-622

v1.5.1-623

v1.5.1-624

v1.5.1-626

v1.5.1-627

v1.5.1-628

v1.5.1-629

v1.5.1-630

v1.6.0-635

v1.6.0-636

v1.6.0-637

v1.6.0-638

v1.6.0-639