Ubuntu 16.04 ESM : LibASS vulnerabilities (USN-4797-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4797-1 advisory. It was discovered that LibASS incorrectly handled certain ASS files. A remote attacker could possibly use this issue to cause a denial of service. One of...

Ubuntu: Security Advisory (USN-4797-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-24994

Stack overflow in the parsetag function in libass/assparse.c in libass before 0.15.0 allows remote attackers to cause a denial of service or remote code execution via a crafted file...

USN-4797-1: LibASS vulnerabilities

It was discovered that LibASS incorrectly handled certain ASS files. A remote attacker could possibly use this issue to cause a denial of service. One of the issues, CVE-2016-7970, only affected Ubuntu 16.04 ESM. CVE-2016-7969, CVE-2016-7970, CVE-2016-7972 It was discovered that LibASS incorrectl...

USN-4797-1 libass vulnerabilities

It was discovered that LibASS incorrectly handled certain ASS files. A remote attacker could possibly use this issue to cause a denial of service. One of the issues, CVE-2016-7970, only affected Ubuntu 16.04 ESM. CVE-2016-7969, CVE-2016-7970, CVE-2016-7972 It was discovered that LibASS incorrectl...

openSUSE 15 Security Update : libass (openSUSE-SU-2021:1664-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:1664-1 advisory. - Stack overflow in the parsetag function in libass/assparse.c in libass before 0.15.0 allows remote attackers to cause a denial of service or remot...

openSUSE: Security Advisory for libass (openSUSE-SU-2021:1664-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2021:1664-1 Security update for libass

This update for libass fixes the following issues: - CVE-2020-24994: Fixed a stack overflow in the parsetag bsc1184153...

Security update for libass (moderate)

openSUSE Security Update: Security update for libass Announcement ID: openSUSE-SU-2021:1664-1 Rating: moderate References: 1184153 Cross-References: CVE-2020-24994 CVSS scores: CVE-2020-24994 SUSE: 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.3 An update th...

Advisory ROSA-SA-2021-1863

Software: libass 0.13.4 OS: Cobalt 7.9 CVE-ID: CVE-2020-24994 CVE-Crit: HIGH CVE-DESC: Stack overflow in the parsetag function in libass / assparse.c in libass before version 0.15.0 allows remote attackers to cause a denial of service or remote code execution via a crafted file. CVE-STATUS: defau...

SUSE: Security Advisory (SUSE-SU-2021:1664-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : libass (openSUSE-2021-773)

This update for libass fixes the following issues : - CVE-2020-24994: Fixed a stack overflow in the parsetag bsc1184153. This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

openSUSE: Security Advisory for libass (openSUSE-SU-2021:0773-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2021:0773-1 Security update for libass

This update for libass fixes the following issues: - CVE-2020-24994: Fixed a stack overflow in the parsetag bsc1184153. This update was imported from the SUSE:SLE-15:Update update project...

SUSE-SU-2021:1664-1 Security update for libass

This update for libass fixes the following issues: - CVE-2020-24994: Fixed a stack overflow in the parsetag bsc1184153...

CVE-2020-24994

creationtimestamp| type| source ---|---|--- 2021-03-23 23:38:46+00:00| seen| https://t.me/cibsecurity/25353...

CVE-2020-24994

Stack overflow in the parsetag function in libass/assparse.c in libass before 0.15.0 allows remote attackers to cause a denial of service or remote code execution via a crafted file...

CVE-2020-24994

Stack overflow in the parsetag function in libass/assparse.c in libass before 0.15.0 allows remote attackers to cause a denial of service or remote code execution via a crafted file...

CVE-2020-24994

CVE-2020-24994 is a stack overflow in libass/ass_parse.c parse_tag() affecting libass before 0.15.0. A crafted file can trigger denial of service or remote code execution. Multiple advisories reference fixes (e.g., openSUSE openSUSE-SU-2021:1664-1, Ubuntu USN-4797-1, OSV vulnerability page) with ...

CVE-2020-24994

Stack overflow in the parsetag function in libass/assparse.c in libass before 0.15.0 allows remote attackers to cause a denial of service or remote code execution via a crafted file...