Mediaarea: >> Mediainfo >> 20.03 Security Vulnerabilities
Mediainfo before version 20.08 has a heap buffer overflow vulnerability via MediaInfoLib::File_Gxf::ChooseParser_ChannelGrouping.
CVSS Score
7.5
EPSS Score
0.005
Published
2021-03-18
In MediaInfoLib in MediaArea MediaInfo 20.03, there is a stack-based buffer over-read in Streams_Fill_PerStream in Multiple/File_MpegPs.cpp (aka an off-by-one during MpegPs parsing).
CVSS Score
7.8
EPSS Score
0.005
Published
2020-06-30