15 matches found
SUSE SLES16 Security Update : localsearch (SUSE-SU-2026:21854-1)
The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:21854-1 advisory. - CVE-2026-1764: Fixed a heap buffer overflow leads to denial of service or information disclosure when parsing MP3 files...
openSUSE 16 Security Update : localsearch (openSUSE-SU-2026:20821-1)
The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20821-1 advisory. - CVE-2026-1764: Fixed a heap buffer overflow leads to denial of service or information disclosure when parsing MP3 files. bsc1257606 -...
EUVD-2021-17879
Malware in sbrugna...
CVE-2021-30959
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. Parsing a maliciously crafted audio file may lead to disclosure of user information...
CVE-2021-30960
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2, tvOS 15.2. Parsing a maliciously crafted audio file may lead to disclosure of user information...
PT-2024-6184 · Adobe · Audition
Name of the Vulnerable Software and Affected Versions: Adobe Audition versions 24.4.1, 23.6.6 and earlier Description: The issue is related to an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires...
UBUNTU-CVE-2021-40826
Clementine Music Player through 1.3.1 is vulnerable to a User Mode Write Access Violation, affecting the MP3 file parsing functionality at clementine+0x3aa207. The vulnerability is triggered when the user opens a crafted MP3 file or loads a remote stream URL that is mishandled by Clementine...
PT-2021-4773 · Adobe · Character Animator
Name of the Vulnerable Software and Affected Versions: Adobe Character Animator versions 4.4 and earlier Description: The issue is related to a memory corruption vulnerability when parsing a M4A file, potentially resulting in arbitrary code execution in the context of the current user. User...
CVE-2021-30685
This issue was addressed with improved checks. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. Parsing a maliciously crafted audio file may lead to disclosure of user information...
CVE-2021-30685
This issue was addressed with improved checks. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. Parsing a maliciously crafted audio file may lead to disclosure of user information...
CVE-2021-30962
A memory initialization issue was addressed with improved memory handling. This issue is fixed in tvOS 15.2, macOS Big Sur 11.6.2. Parsing a maliciously crafted audio file may lead to disclosure of user information...
CVE-2021-30960
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2, tvOS 15.2. Parsing a maliciously crafted audio file may lead to disclosure of user information...
Apple tvOS和Apple macOS Big Sur 安全漏洞
Apple tvOS and Apple macOS Big Sur are both products of Apple Inc. Apple tvOS is a smart TV operating system. apple macOS Big Sur is the 17th major version of macOS, Apple's operating system for the MAC. macOS Big Sur is the 17th major version of macOS, Apple's operating system for the MAC. A...
iOS 12.4 - Sandbox Escape due to Integer Overflow in mediaserverd
mediaserverd has various media parsing responsibilities; its reachable from various sandboxes and is able to talk to interesting kernel drivers so is a valid target in an exploit chain. One of the services it vends is com.apple.audio.AudioFileServer, a fairly simple XPC service which will parse...
Real Player real audio files buffer overflow
Buffer overflow on .ra files parsing...