-
Notifications
You must be signed in to change notification settings - Fork 179
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
heap-buffer-overflow in MediaInfoLib::File_Id3v2::Data_Parse() ../../../Source/MediaInfo/Tag/File_Id3v2.cpp:597 #2105
Comments
Issue in MediaArea/MediaInfoLib?
|
Yes, maybe I should open this issue in MediaArea/MediaInfoLib? |
[Fixed in PRs] |
[Fixed in PRs] |
MediaInfoLib/Source/MediaInfo/Tag/File_Id3v2.cpp Lines 589 to 597 in abdbb21
Access violation writing to
I have no idea how to fix since I have zero idea of what this code actually does. |
Summary
A heap-buffer-overflow vulnerability was found in MediaInfo, it may cause arbitrary code execution.
Version
Details
ASAN output:
Poc
heap_overflow_mediainfo.tar.gz
reproduce:
The text was updated successfully, but these errors were encountered: