Lucene search
K

267 matches found

AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.7 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: Media: Verisilicon: AV1 – Fix for the tile info buffer size. Each tile consists of: rowsb, colsb, startpos, and endpos 4 bytes each. Therefore, the total memory required is AV1MAXTILES 16 bytes. Use the correct define to allocate...

7.8CVSS5.8AI score0.00138EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/23 2:19 a.m.5 views

SUSE CVE-2026-56208

A heap buffer overflow vulnerability was found in libaom, the reference AV1 codec implementation. A flaw in the AV1 encoder's Look-Ahead Processing LAP mode causes the first-pass stats ring buffer wrap-around guard to be bypassed when glaginframes is set to 1 or higher. This results in a 232-byte...

7.1CVSS6.2AI score0.00275EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/20 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-56208

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap buffer overflow vulnerability was found in libaom, the reference AV1 codec implementation. A flaw in the AV1 encoder's Look-Ahead Processing LAP mode...

7.6CVSS6.2AI score0.00275EPSS
Exploits0References4
NVD
NVD
added 2026/06/19 5:16 p.m.11 views

CVE-2026-56208

A heap buffer overflow vulnerability was found in libaom, the reference AV1 codec implementation. A flaw in the AV1 encoder's Look-Ahead Processing LAP mode causes the first-pass stats ring buffer wrap-around guard to be bypassed when glaginframes is set to 1 or higher. This results in a 232-byte...

7.6CVSS0.00275EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/19 4:28 p.m.6 views

EUVD-2026-38047

A remote code execution vulnerability was found in libaom, the reference AV1 codec implementation. Insufficient bounds validation in the AV1 encoder's SVC Scalable Video Coding layer ID control allows an attacker to supply crafted video frame pixels that overlap with internal encoder layer contex...

7.1CVSS6.7AI score0.00399EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/19 4:28 p.m.34 views

CVE-2026-56208 Libaom: libaom: heap buffer overflow in av1 encoder first-pass stats buffer via lap mode

A heap buffer overflow vulnerability was found in libaom, the reference AV1 codec implementation. A flaw in the AV1 encoder's Look-Ahead Processing LAP mode causes the first-pass stats ring buffer wrap-around guard to be bypassed when glaginframes is set to 1 or higher. This results in a 232-byte...

7.6CVSS0.00275EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/06/19 4:28 p.m.5 views

CVE-2026-56208

A heap buffer overflow vulnerability was found in libaom, the reference AV1 codec implementation. A flaw in the AV1 encoder's Look-Ahead Processing LAP mode causes the first-pass stats ring buffer wrap-around guard to be bypassed when glaginframes is set to 1 or higher. This results in a 232-byte...

7.6CVSS6.2AI score0.00275EPSS
Exploits0References6
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in gst-plugins-bad1.0

GStreamer AV1 Codec Parsing Heap-based Buffer Overflow: A Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability, but the attack vecto...

8.8CVSS8.6AI score0.02189EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in aom

It was discovered that AOM v2.0.1 contains a NULL pointer dereferencing issue, which occurs through the component av1/av1dxiface.c...

6.5CVSS6.7AI score0.01381EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in gst-plugins-bad1.0

GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability, but the attack vectors...

8.8CVSS7.8AI score0.01559EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/15 9:30 p.m.7 views

EUVD-2026-36805

A denial of service vulnerability was found in GStreamer's AV1 codec parser in gst-plugins-bad. The gstav1parserparsetilelistobu function passes a byte count to a bit-reader API that expects a bit count, causing parser desynchronization. A remote attacker could trick a user into opening a special...

6.5CVSS5.3AI score0.00307EPSS
Exploits0References4
OSV
OSV
added 2026/06/15 8:16 p.m.4 views

UBUNTU-CVE-2026-52718

A denial of service vulnerability was found in GStreamer's AV1 codec parser in gst-plugins-bad. The gstav1parserparsetilelistobu function passes a byte count to a bit-reader API that expects a bit count, causing parser desynchronization. A remote attacker could trick a user into opening a special...

6.5CVSS5.9AI score0.00307EPSS
Exploits0References7
CVE
CVE
added 2026/06/15 7:15 p.m.23 views

CVE-2026-52718

GStreamer AV1 parser vulnerability in gst-plugins-bad. The gst_av1_parser_parse_tile_list_obu() function passes a byte count to a bit-reader API that expects a bit count, causing parser desynchronization and potential crash. A remote user could trigger an assertion abort by opening a crafted AV1 ...

6.5CVSS5.4AI score0.00307EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.9 views

PT-2026-49334

Name of the Vulnerable Software and Affected Versions GStreamer affected versions not specified Description A denial of service issue exists in the AV1 codec parser within gst-plugins-bad. The gst av1 parser parse tile list obu function incorrectly passes a byte count to a bit-reader API that...

6.5CVSS5.9AI score0.00307EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/06/15 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-52718

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A denial of service vulnerability was found in GStreamer's AV1 codec parser in gst-plugins-bad. The gstav1parserparsetilelistobu function passes a byte count to...

6.5CVSS5.9AI score0.00307EPSS
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
added 2026/06/08 12:0 a.m.4 views

Security update for ffmpeg-4 (important)

openSUSE security update: security update for ffmpeg-4 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20914-1 Rating: important References: bsc1262047 Cross-References: CVE-2026-30997 CVSS scores: CVE-2026-30997 SUSE : 7.1...

7.1CVSS5.4AI score0.00337EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2026/05/07 2:17 a.m.6 views

SUSE CVE-2026-43222

In the Linux kernel, the following vulnerability has been resolved: media: verisilicon: AV1: Fix tile info buffer size Each tile info is composed of: rowsb, colsb, startpos and endpos 4 bytes each. So the total required memory is AV1MAXTILES 16 bytes. Use the correct define to allocate the buffer...

7.8CVSS5.9AI score0.00138EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/06 10:10 p.m.12 views

CVE-2026-43222

A flaw was found in the Linux kernel's media: verisilicon: AV1 driver. The driver incorrectly calculates the buffer size for tile information, which can lead to writing data beyond the allocated memory. This memory corruption vulnerability could result in system instability or a denial of service...

7.8CVSS5.9AI score0.00138EPSS
Exploits0References4
NVD
NVD
added 2026/05/06 12:16 p.m.9 views

CVE-2026-43222

In the Linux kernel, the following vulnerability has been resolved: media: verisilicon: AV1: Fix tile info buffer size Each tile info is composed of: rowsb, colsb, startpos and endpos 4 bytes each. So the total required memory is AV1MAXTILES 16 bytes. Use the correct define to allocate the buffer...

7.8CVSS0.00138EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/06 11:28 a.m.38 views

CVE-2026-43222 media: verisilicon: AV1: Fix tile info buffer size

In the Linux kernel, the following vulnerability has been resolved: media: verisilicon: AV1: Fix tile info buffer size Each tile info is composed of: rowsb, colsb, startpos and endpos 4 bytes each. So the total required memory is AV1MAXTILES 16 bytes. Use the correct define to allocate the buffer...

7.8CVSS0.00138EPSS
Exploits0References5
Rows per page
Query Builder