Swtkiwi

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-624 **Description** A issue has been found that can cause a SEGV in the `AP4 Processor::ProcessFragments` function, located in Core/Ap4Processor.cpp. **Recommendations** For Bento4 version 1.5.1-624, consider restricting access to the `AP4 Processor::ProcessFragments` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-624 **Description** A heap-based buffer over-read issue has been found in the AP4 BytesToUInt16BE function, located in Core/Ap4Utils.h, which is called by the AP4 Stz2Atom class. **Recommendations** For Bento4 version 1.5.1-624, consider restricting access to the `AP4 BytesToUInt16BE` function in Core/Ap4Utils.h until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-624 **Description** A issue has been discovered that can cause a SEGV in the `AP4 Mpeg2TsAudioSampleStream::WriteSample` function in `Core/Ap4Mpeg2Ts.cpp`. **Recommendations** For Bento4 version 1.5.1-624, consider restricting access to the `AP4 Mpeg2TsAudioSampleStream::WriteSample` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-624 **Description** A buffer over-read issue has been found in the AP4 MemoryByteStream::WritePartial function, located in Core/Ap4ByteStream.cpp. **Recommendations** For Bento4 version 1.5.1-624, consider restricting access to the AP4 MemoryByteStream::WritePartial function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-624 **Description** A NULL pointer dereference issue has been found in the `AP4 DataBuffer::SetData` function located in `Core/Ap4DataBuffer.cpp`. This issue can potentially cause problems when handling data. **Recommendations** For Bento4 version 1.5.1-624, consider applying a patch or fix to resolve the NULL pointer dereference issue in the `AP4 DataBuffer::SetData` function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-624 **Description** A heap-based buffer over-read issue has been found in the AP4 Mp4AudioDsiParser::ReadBits function, located in Codecs/Ap4Mp4AudioInfo.cpp. **Recommendations** For Bento4 version 1.5.1-624, consider restricting access to the `AP4 Mp4AudioDsiParser::ReadBits` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-624 **Description** A heap-based buffer over-read issue has been found in the AP4 AvccAtom::Create function, located in Core/Ap4AvccAtom.cpp. **Recommendations** For Bento4 version 1.5.1-624, consider restricting access to the AP4 AvccAtom::Create function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-624 **Description** An issue was discovered that causes a heap-buffer-overflow crash in the AP4 HvccAtom class. This issue is located in the Core/Ap4HvccAtom.cpp file. **Recommendations** For Bento4 version 1.5.1-624, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-624 **Description** A heap-based buffer over-read issue was discovered in the `AP4 Mpeg2TsVideoSampleStream::WriteSample` function, located in `Core/Ap4Mpeg2Ts.cpp`, which is called from `Mp42Hls.cpp`. **Recommendations** For Bento4 version 1.5.1-624, consider restricting access to the `AP4 Mpeg2TsVideoSampleStream::WriteSample` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-624 **Description** A issue has been found in the software, which is a SEGV in `AP4 StcoAtom::AdjustChunkOffsets` in `Core/Ap4StcoAtom.cpp`. **Recommendations** For Bento4 version 1.5.1-624, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-624 **Description** A issue has been found in the software, specifically a SEGV in `AP4 StszAtom::GetSampleSize` in `Core/Ap4StszAtom.cpp`. **Recommendations** For version 1.5.1-624, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-624 **Description** A heap-based buffer over-read issue has been discovered in the AP4 Mpeg2TsVideoSampleStream::WriteSample function, located in Core/Ap4Mpeg2Ts.cpp. This issue occurs after a call from Mp42Ts.cpp. **Recommendations** For Bento4 version 1.5.1-624, consider restricting access to the AP4 Mpeg2TsVideoSampleStream::WriteSample function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.