Wuk0N9O

**Name of the Vulnerable Software and Affected Versions** libdoc through 2019-01-28 **Description** The issue arises from a division by zero error in the `calcFileBlockOffset` function within `ole.c`. This error occurs due to insufficient input validation, allowing for a potential crash or other unintended behavior when a zero value is used in a calculation. **Recommendations** For versions through 2019-01-28, consider adding input validation to prevent division by zero errors in the `calcFileBlockOffset` function as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-628 **Description** An issue was discovered related to excessive memory allocation in the AP4 ElstAtom class. This issue is associated with the AP4 Array<AP4 ElstEntry>::EnsureCapacity function in Core/Ap4Array.h, as demonstrated by mp42hls. **Recommendations** For Bento4 version 1.5.1-628, consider restricting the use of the AP4 ElstAtom class until a patch is available. As a temporary workaround, avoid using the AP4 Array<AP4 ElstEntry>::EnsureCapacity function to minimize the risk of exploitation.