CVE-2018-14403 in MP4v2
Сводка
по MITRE
MP4NameFirstMatches in mp4util.cpp in MP4v2 2.0.0 mishandles substrings of atom names, leading to use of an inappropriate data type for associated atoms. The resulting type confusion can cause out-of-bounds memory access.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.