CVE-2017-14646

Published: 2017-09-21T17:29Z

Last Modified: 2024-11-21T03:13Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

The AP4_AvccAtom and AP4_HvccAtom classes in Bento4 version 1.5.0-617 do not properly validate data sizes, leading to a heap-based buffer over-read and application crash in AP4_DataBuffer::SetData in Core/Ap4DataBuffer.cpp. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt