Low: GStreamer, libmad, and SDL security, bug fix, and enhancement update

The GStreamer library provides a streaming media framework based on graphs of media data filters. The libmad package is an MPEG audio decoder capable of 24-bit output. Simple DirectMedia Layer SDL is a cross-platform multimedia library designed to provide fast access to the graphics frame buffer...

GStreamer, libmad, and SDL security, bug fix, and enhancement update

An update is available for libmad, gstreamer1-plugins-ugly-free, gstreamer1-plugins-bad-free, SDL2, orc, gstreamer1. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

openSUSE Security Update : opera (openSUSE-2020-402)

This update for opera fixes the following issues : Update to version 67.0.3575.97 - DNA-84063 Open URL in new tab with Go to web address in search/copy popup and right mouse click context menu - DNA-84780 Search in Search and Copy popup opens tab in wrong position from popup window - DNA-84786...

The vulnerability of the mp4ff_parse_tag function in the software for working with audio files, found in Freeware Advanced Audio Decoder 2 (FAAD2). This vulnerability allows a hacker to cause a service failure.

The vulnerability of the mp4ffparsetag function in the software for working with audio files, found in the Freeware Advanced Audio Decoder 2 FAAD2, relates to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability could allow a remote attacker to cause a service...

The vulnerability of the mp4ff_read_stco function in software for working with audio files, found in the Freeware Advanced Audio Decoder 2 (FAAD2) software, allows a hacker to cause a service failure.

The vulnerability of the mp4ffreadstco function in software for working with audio files, found in the Freeware Advanced Audio Decoder 2 FAAD2, relates to the execution of a loop without sufficient restrictions on its execution count. Exploiting this vulnerability could allow an attacker to cause...

The vulnerability of the mp4ff_read_stsd function in software for working with audio files, specifically in the Freeware Advanced Audio Decoder 2 (FAAD2) software, allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstsd function in software for working with audio files, such as Freeware Advanced Audio Decoder 2 FAAD2, is related to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability can allow an attacker to cause service interruptions b...

The vulnerability of the mp4ff_read_stsc function in software for working with audio files, provided by Freeware Advanced Audio Decoder 2 (FAAD2), allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstsc function in software for working with audio files, found in the Freeware Advanced Audio Decoder 2 FAAD2, relates to the execution of a loop without sufficient restrictions on its execution count. Exploiting this vulnerability could allow an attacker to cause...

The vulnerability of the mp4ff_read_stco function in software for working with audio files, found in the Freeware Advanced Audio Decoder 2 (FAAD2) software, allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstco function in software for working with audio files, found in the Freeware Advanced Audio Decoder 2 FAAD2, relates to the execution of a loop without sufficient restrictions on its execution count. Exploiting this vulnerability could allow an attacker to cause...

The vulnerability of the mp4ff_read_stco function (common/mp4ff/mp4atom.c) in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstco function common/mp4ff/mp4atom.c in the Freeware Advanced Audio Decoder 2 FAAD2 audio decoder is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure using a...

The vulnerability of the mp4ff_read_stsd function (common/mp4ff/mp4atom.c) in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstsd function common/mp4ff/mp4atom.c in the Freeware Advanced Audio Decoder 2 FAAD2 audio decoder is caused by reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure using a specially created...

The vulnerability of the excludedchannels() function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a intruder to compromise data integrity, gain unauthorized access to protected information, and cause service interruptions.

The vulnerability of the excludedchannels function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to the issue of data being written beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise data integrity, gain unauthorized access to...

The vulnerability of the ifilter_bank() function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a intruder to compromise data integrity, gain unauthorized access to protected information, and cause service interruptions.

The vulnerability of the ifilterbank function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to an error that causes a NULL pointer dereferencing. Exploiting this vulnerability could allow an attacker to compromise data integrity, gain unauthorized access to protected information, and...

The vulnerability of the calculate_gain function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failure.

The vulnerability of the calculategain function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to an error that causes stack overflow. Exploiting this vulnerability could allow a remote attacker to compromise data integrity, gain unauthorized access to protected information, and cause...

The vulnerability of the hf_assembly function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a hacker to trigger a service failure.

The vulnerability of the hfassembly function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to a pointer arithmetic error, which leads to a memory access that goes beyond the boundaries of the memory buffer. Exploiting this vulnerability could allow an attacker to cause a system failur...

The vulnerability of the faad_resetbits() function in the software suite for working with audio files, Freeware Advanced Audio Decoder 2 (FAAD2), allows a perpetrator to compromise data integrity, gain unauthorized access to protected information, and cause service failures.

The vulnerability of the faadresetbits function in the software suite for working with audio files, Freeware Advanced Audio Decoder 2 FAAD2, is related to buffer overflows. Exploiting this vulnerability can allow an attacker to compromise data integrity, gain unauthorized access to protected...

The vulnerability of the lt_prediction function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a intruder to trigger a service failure.

The vulnerability of the ltprediction function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to a pointer arithmetic error, which leads to a memory access that goes beyond the boundaries of the memory buffer. Exploiting this vulnerability can allow an attacker to cause a service failu...

The vulnerability of the ifilter_bank function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a hacker to trigger a service failure.

The vulnerability of the ifilterbank function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to the swapping of the zero pointer. Exploiting this vulnerability could allow a hacker to cause a service failure...

The vulnerability of the sbr_process_channel function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a hacker to trigger a service failure.

The vulnerability of the sbrprocesschannel function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to the swapping of the zero pointer. Exploiting this vulnerability could allow a hacker to cause a service failure...

The vulnerability of the calculate_gain() function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a intruder to compromise data integrity, gain unauthorized access to protected information, and cause service failure.

The vulnerability of the calculategain function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to the escape from memory buffers. Exploiting this vulnerability could allow an attacker to compromise data integrity, gain unauthorized access to protected information, and cause service...

CVE-2019-15296

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The faadresetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld-buffersize - words4, cast to uint32. If ld-buffersize - words4 is negative, a...