CVE-2025-25946 Information

Description

An issue in Bento4 v1.6.0-641 allows an attacker to cause a memory leak via Ap4Marlin.cpp and Ap4Processor.cpp specifically in AP4_MarlinIpmpEncryptingProcessor::Initialize and AP4_Processor::Process during the execution of mp4encrypt with a specially crafted MP4 input file.

Reference

https://github.com/axiomatic-systems/Bento4/issues/994