CVE-2017-9127

Description

The quicktime_user_atoms_read_atom function in useratoms.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) via a crafted mp4 file.

Affected packages (1)

• Debian/libquicktimefrom 0, < 2:1.2.4-11

CVSS scores

References (1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2017-9127