A stack overflow in the AP4_Array<AP4_TrunAtom::Entry>::EnsureCapacity component of axiomatic-systems Bento4 before v1.8.9allows attackers to cause a Denial of Service (DoS) via a crafted MP4 file.
Metrics
Affected Vendors & Products
References
History
Mon, 29 Jun 2026 20:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Axiomatic
Axiomatic bento4 |
|
| Vendors & Products |
Axiomatic
Axiomatic bento4 |
Mon, 29 Jun 2026 17:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Stack Overflow in Bento4 MP4 Parsing Causing Denial of Service |
Mon, 29 Jun 2026 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Stack Overflow in Bento4 MP4 Parser Enables DoS | |
| Weaknesses | CWE-120 |
Mon, 29 Jun 2026 13:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-121 | |
| References |
| |
| Metrics |
cvssV3_1
|
Sat, 27 Jun 2026 00:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Stack Overflow in Bento4 MP4 Parser Enables DoS | |
| Weaknesses | CWE-120 |
Fri, 26 Jun 2026 22:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A stack overflow in the AP4_Array<AP4_TrunAtom::Entry>::EnsureCapacity component of axiomatic-systems Bento4 before v1.8.9allows attackers to cause a Denial of Service (DoS) via a crafted MP4 file. | |
| References |
|
Status: PUBLISHED
Assigner: mitre
Published: 2026-06-26T00:00:00.000Z
Updated: 2026-06-29T13:00:01.511Z
Reserved: 2026-04-06T00:00:00.000Z
Link: CVE-2026-36908
Updated: 2026-06-29T12:59:19.452Z
No data.
No data.