CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2020-36646 – MediaArea ZenLib Ztring.cpp Date_From_Seconds_1970_Local unknown vulnerability
https://notcve.org/view.php?id=CVE-2020-36646
A vulnerability classified as problematic has been found in MediaArea ZenLib up to 0.4.38. This affects the function Ztring::Date_From_Seconds_1970_Local of the file Source/ZenLib/Ztring.cpp. The manipulation of the argument Value leads to unchecked return value to null pointer dereference. Upgrading to version 0.4.39 is able to address this issue. The identifier of the patch is 6475fcccd37c9cf17e0cfe263b5fe0e2e47a8408. • https://github.com/MediaArea/ZenLib/commit/6475fcccd37c9cf17e0cfe263b5fe0e2e47a8408 https://github.com/MediaArea/ZenLib/pull/119 https://github.com/MediaArea/ZenLib/releases/tag/v0.4.39 https://vuldb.com/?ctiid.217629 https://vuldb.com/?id.217629 • CWE-476: NULL Pointer Dereference CWE-690: Unchecked Return Value to NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1CVE-2020-26797
https://notcve.org/view.php?id=CVE-2020-26797
Mediainfo before version 20.08 has a heap buffer overflow vulnerability via MediaInfoLib::File_Gxf::ChooseParser_ChannelGrouping. Mediainfo versiones anteriores a 20.08, presenta una vulnerabilidad de desbordamiento de búfer de la pila por medio de la función MediaInfoLib::File_Gxf::ChooseParser_ChannelGrouping • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WYI2372RLWYQVLSYD5PBI4YTXNMVDZCZ https://sourceforge.net/p/mediainfo/bugs/1154 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2020-15395
https://notcve.org/view.php?id=CVE-2020-15395
In MediaInfoLib in MediaArea MediaInfo 20.03, there is a stack-based buffer over-read in Streams_Fill_PerStream in Multiple/File_MpegPs.cpp (aka an off-by-one during MpegPs parsing). En MediaInfoLib en MediaArea MediaInfo versión 20.03, se presenta una lectura excesiva del búfer en la región stack de la memoria en la función Streams_Fill_PerStream en el archivo Multiple/File_MpegPs.cpp (también se conoce como por un paso durante el análisis de MpegPs) • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQJCEQRRPTN5CY5URDFTEJU3A2VKLNBA https://mediaarea.net/en/MediaInfo https://sourceforge.net/p/mediainfo/bugs/1127 • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 1CVE-2019-11373
https://notcve.org/view.php?id=CVE-2019-11373
An out-of-bounds read in File__Analyze::Get_L8 in File__Analyze_Buffer.cpp in MediaInfoLib in MediaArea MediaInfo 18.12 leads to a crash. Una lectura fuera de limites en File__Analyze::Get_L8 en File__Analyze_Buffer.cpp en MediaInfoLib en MediaArea MediaInfo 18.12 permite un cierre inesperado • http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00069.html http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00083.html http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00028.html https://github.com/MediaArea/MediaInfoLib/pull/1111 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B752JY7TABWSVYHFATD37XDD6PVIO5C6 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BC4Z4BGGMSSVTRKVD3OCW4JLH3K2ZNGP https:/ • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 1CVE-2019-11372
https://notcve.org/view.php?id=CVE-2019-11372
An out-of-bounds read in MediaInfoLib::File__Tags_Helper::Synched_Test in Tag/File__Tags.cpp in MediaInfoLib in MediaArea MediaInfo 18.12 leads to a crash. Una lectura fuera de límites en MediaInfoLib::File__Tags_Helper::Synched_Test en Tag/File__Tags.cpp en MediaInfoLib en MediaArea MediaInfo, versión 18.12, provoca un fallo. • http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00069.html http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00083.html http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00028.html https://github.com/MediaArea/MediaInfoLib/pull/1111 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B752JY7TABWSVYHFATD37XDD6PVIO5C6 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BC4Z4BGGMSSVTRKVD3OCW4JLH3K2ZNGP https:/ • CWE-125: Out-of-bounds Read •