CVE-2025-59729

Name of the Vulnerable Software and Affected Versions versions prior to 8.0

Description An integer underflow occurs in the offset calculation during DHAV file header parsing, potentially leading to reading the duration from before the start of the allocated buffer. Specifically, when processing a DHAV file larger than MAX DURATION BUFFER SIZE (0x100000 bytes), an integer underflow can occur when calculating end pos. This underflow can result in memory access occurring before the beginning of the allocated buffer. The issue arises because a check at [3] only correctly handles cases where end pos is before the start of the file or after the copied section, failing to account for scenarios where end pos is within the file but before the copied section. The calculation (end pos - end buffer pos) can underflow, causing an out-of-bounds read at [4].

Recommendations Upgrade to version 8.0 or beyond.