CVE-2024-37017

May 31, 2024, 1:01 p.m.

Product(s) Impacted

asdcplib (AS-DCP Lib)

2.13.1

Description

asdcplib (aka AS-DCP Lib) 2.13.1 has a heap-based buffer over-read in ASDCP::TimedText::MXFReader::h__Reader::MD_to_TimedText_TDesc in AS_DCP_TimedText.cpp in libasdcp.so.

Weaknesses

Date

Published: May 31, 2024, 12:15 a.m.

Last Modified: May 31, 2024, 1:01 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

https://github.com/cinecert/asdcplib/issues/138