Mediaarea - Mediainfo CVE

Filtered by vendor Mediaarea Subscribe

Filtered by product Mediainfo

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-26797	2 Fedoraproject, Mediaarea	2 Fedora, Mediainfo	2022-01-01	5.0 MEDIUM	7.5 HIGH
Mediainfo before version 20.08 has a heap buffer overflow vulnerability via MediaInfoLib::File_Gxf::ChooseParser_ChannelGrouping.
CVE-2020-15395	1 Mediaarea	1 Mediainfo	2020-11-17	6.8 MEDIUM	7.8 HIGH
In MediaInfoLib in MediaArea MediaInfo 20.03, there is a stack-based buffer over-read in Streams_Fill_PerStream in Multiple/File_MpegPs.cpp (aka an off-by-one during MpegPs parsing).

Vulnerabilities (CVE)