Lucene search
K

57 matches found

EUVD
EUVD
added 2026/06/19 4:28 p.m.5 views

EUVD-2026-38046

A heap-buffer-overflow read vulnerability was found in libaom, the reference AV1 codec implementation. A missing bounds check in the SVC Scalable Video Coding layer ID control function allows setting a spatiallayerid exceeding the configured number of layers. This causes an out-of-bounds heap rea...

7.1CVSS5.8AI score0.00245EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/19 4:28 p.m.9 views

CVE-2026-56210

A heap-buffer-overflow read vulnerability was found in libaom, the reference AV1 codec implementation. A missing bounds check in the SVC Scalable Video Coding layer ID control function allows setting a spatiallayerid exceeding the configured number of layers. This causes an out-of-bounds heap rea...

7.1CVSS5.8AI score0.00245EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/19 4:28 p.m.6 views

EUVD-2026-38045

A heap buffer overflow vulnerability was found in libaom, the reference AV1 codec implementation. A flaw in the AV1 encoder's Look-Ahead Processing LAP mode causes the first-pass stats ring buffer wrap-around guard to be bypassed when glaginframes is set to 1 or higher. This results in a 232-byte...

7.6CVSS6.2AI score0.00275EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in aom

The file aomdsp/noisemodel.c in the libaom library within AOMedia, dated before March 24, 2021, contains a buffer overflow vulnerability...

9.8CVSS8.6AI score0.02216EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in aom

aomimage.c in libaom in AOMedia before 2021-04-07 releases memory that is not located in the heap...

9.8CVSS8.2AI score0.0205EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, caused by an error in calculating the buffer size for AV1 block information. This vulnerability may lead to the...

7.8CVSS5.9AI score0.00138EPSS
Exploits0References1
OSV
OSV
added 2026/04/13 3:17 p.m.5 views

UBUNTU-CVE-2026-30997

An out-of-bounds read in the readglobalparam function libavcodec/av1dec.c of FFmpeg v8.0.1 allows attackers to cause a Denial of Service DoS via a crafted input...

7.5CVSS5.8AI score0.00337EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-43325

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00617EPSS
Exploits0References1
OSV
OSV
added 2025/03/31 1:8 p.m.3 views

USN-7397-1 aom vulnerability

Xiantong Hou discovered that AOM did not properly handle certain malformed media files. If an application using AOM opened a specially crafted file, a remote attacker could cause a denial of service, or possibly execute arbitrary code...

10CVSS7.1AI score0.01254EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/06/05 12:0 a.m.5 views

libaom security breach

libaom is a software application. A reference codec for the AOMedia Video 1 format. A security vulnerability exists in libaom that stems from an integer overflow in the imgallochelper function of the libaom library...

10CVSS7.1AI score0.01254EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/12/27 12:0 a.m.4 views

AOMedia Buffer Error Vulnerability

AOMedia is a next-generation open source digital media technology for everyone from the AOMedia organization. AOMedia versions prior to v3.7.1 suffer from a buffer error vulnerability that stems from the fact that increasing the resolution of a video frame while performing multi-threaded encoding...

9.8CVSS7.2AI score0.01165EPSS
Exploits1References6
BDU FSTEC
BDU FSTEC
added 2023/09/07 12:0 a.m.6 views

The vulnerability of the aom_dsp/noise_model.c component in the library, which implements the AV1 codec, in the Debian GNU/Linux operating system allows a perpetrator to execute arbitrary code.

The vulnerability of the aomdsp/noisemodel.c component in the library that implements the AV1 codec in the Debian GNU/Linux operating system is caused by buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code remotely...

10CVSS8.4AI score0.02216EPSS
Exploits0References10Affected Software4
NVD
NVD
added 2023/08/29 5:15 p.m.23 views

CVE-2023-39616

AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access via the component assignframebufferp in av1/common/av1commonint.h...

7.5CVSS7.5AI score0.00617EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/08/29 5:15 p.m.2 views

CVE-2023-39616

AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access via the component assignframebufferp in av1/common/av1commonint.h...

7.5CVSS5.7AI score0.00617EPSS
Exploits0References2
OSV
OSV
added 2023/08/29 5:15 p.m.4 views

DEBIAN-CVE-2023-39616

AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access via the component assignframebufferp in av1/common/av1commonint.h...

7.5CVSS7.2AI score0.00617EPSS
Exploits0References1
OSV
OSV
added 2023/08/29 5:15 p.m.7 views

CVE-2023-39616

AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access via the component assignframebufferp in av1/common/av1commonint.h...

7.5CVSS7.1AI score
Exploits0References1
Prion
Prion
added 2023/08/29 5:15 p.m.18 views

Design/Logic Flaw

AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access via the component assignframebufferp in av1/common/av1commonint.h...

5CVSS7.4AI score0.00617EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/08/29 5:15 p.m.2 views

UBUNTU-CVE-2023-39616

AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access via the component assignframebufferp in av1/common/av1commonint.h...

7.5CVSS7.1AI score0.00617EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/08/29 12:0 a.m.22 views

CVE-2023-39616

AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read memory access via the component assignframebufferp in av1/common/av1commonint.h...

7.7AI score0.00617EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/08/29 12:0 a.m.3 views

PT-2023-27034 · Aomedia +1 · Aomedia +1

Name of the Vulnerable Software and Affected Versions: AOMedia versions 3.0.0 through 3.5.0 Description: The issue is related to an invalid read memory access via the component assign frame buffer p in av1/common/av1 common int.h. This component is part of the AOMedia library. Recommendations: Fo...

7.5CVSS7.2AI score0.00617EPSS
Exploits0References13
Rows per page
Query Builder