Vulnerabilities > CVE-2021-37231 - Out-of-bounds Write vulnerability in Atomicparsley Project Atomicparsley 20210124.204813.840499F

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

atomicparsley-project

CWE-787

NVD

Published: 2021-08-04

Updated: 2023-05-03

Summary

A stack-buffer-overflow occurs in Atomicparsley 20210124.204813.840499f through APar_readX() in src/util.cpp while parsing a crafted mp4 file because of the missing boundary check.

Vulnerable Configurations

Part	Description	Count
Application	Atomicparsley_Project Atomicparsley Project Atomicparsley 20210124.204813.840499F	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/wez/atomicparsley/pull/31#issue-687280335
https://github.com/wez/atomicparsley/issues/30
https://security.gentoo.org/glsa/202305-01