The AP4_Processor::Process function in Core/Ap4Processor.cpp in Bento4 mp4encrypt before 1.5.0-616 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted mp4 file.
A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Bento4 | Axiosys | * | 1.5.0-615 (including) |
Kodi-inputstream-adaptive | Ubuntu | kinetic | * |
Kodi-inputstream-adaptive | Ubuntu | lunar | * |
Kodi-inputstream-adaptive | Ubuntu | mantic | * |
Kodi-inputstream-adaptive | Ubuntu | trusty | * |
Kodi-inputstream-adaptive | Ubuntu | xenial | * |