In MediaInfoLib in MediaArea MediaInfo 20.03, there is a stack-based buffer over-read in Streams_Fill_PerStream in Multiple/File_MpegPs.cpp (aka an off-by-one during MpegPs parsing).
References
Link | Resource |
---|---|
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQJCEQRRPTN5CY5URDFTEJU3A2VKLNBA/ | |
https://mediaarea.net/en/MediaInfo | Product Vendor Advisory |
https://sourceforge.net/p/mediainfo/bugs/1127/ | Exploit Third Party Advisory |
Configurations
History
07 Nov 2023, 03:17
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
16 Nov 2022, 03:47
Type | Values Removed | Values Added |
---|---|---|
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QQJCEQRRPTN5CY5URDFTEJU3A2VKLNBA/ - Mailing List, Third Party Advisory | |
CPE | cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:* | |
First Time |
Fedoraproject
Fedoraproject fedora |
Information
Published : 2020-06-30 11:15
Updated : 2023-12-10 13:27
NVD link : CVE-2020-15395
Mitre link : CVE-2020-15395
CVE.ORG link : CVE-2020-15395
JSON object : View
Products Affected
fedoraproject
- fedora
mediaarea
- mediainfo
CWE
CWE-125
Out-of-bounds Read