CVE-2021-40943 Information

Description

In Bento4 1.6.0-638 there is a null pointer reference in the function AP4_DescriptorListInspector::Action function in Ap4Descriptor.h:124 as demonstrated by GPAC. This can cause a denial of service (DOS).

Reference

https://github.com/axiomatic-systems/Bento4/issues/643