1231 matches found
UBUNTU-CVE-2018-5269
In OpenCV 3.3.1, an assertion failure happens in cv::RBaseStream::setPos in modules/imgcodecs/src/bitstrm.cpp because of an incorrect integer cast...
DEBIAN-CVE-2018-5269
In OpenCV 3.3.1, an assertion failure happens in cv::RBaseStream::setPos in modules/imgcodecs/src/bitstrm.cpp because of an incorrect integer cast...
OpenCV 'cv::RBaseStream::setPos' function assertion failure vulnerability
OpenCV is an open source, cross-platform, lightweight computer vision library. A security vulnerability exists in the 'cv::RBaseStream::setPos' function in the modules/imgcodecs/src/bitstrm.cpp file in OpenCV version 3.3.1. An attacker can exploit this vulnerability to cause a denial of service...
CVE-2017-1000450
In opencv/modules/imgcodecs/src/utils.cpp, functions FillUniColor and FillUniGray do not check the input length, which can lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier...
DEBIAN-CVE-2017-1000450
In opencv/modules/imgcodecs/src/utils.cpp, functions FillUniColor and FillUniGray do not check the input length, which can lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier...
Updated gstreamer0.10-plugins-ugly packages fix security vulnerability
Hanno Boeck discovered multiple vulnerabilities in the GStreamer media framework and its codecs and demuxers, which may result in denial of service or the execution of arbitrary code if a malformed media file is opened CVE-2017-5846, CVE-2017-5847...
DEBIAN-CVE-2017-12864
In opencv/modules/imgcodecs/src/grfmtpxm.cpp, function ReadNumber did not checkout the input length, which lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier...
DEBIAN-CVE-2017-12863
In opencv/modules/imgcodecs/src/grfmtpxm.cpp, function PxMDecoder::readData has an integer overflow when calculate srcpitch. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier...
MGASA-2017-0259 Updated kernel-tmb packages fixes security and other bugs
This kernel-tmb update is based on upstream 4.9.40 and fixes at least the following security issues: Linux kernel built with the VirtIO GPU driverCONFIGDRMVIRTIOGPU support is vulnerable to a memory leakage issue. It could occur while creating a virtio gpu object in virtiogpuobjectcreate. A...
OpenCV Buffer Overflow Vulnerability
OpenCV is an open source, cross-platform, lightweight computer vision library. A buffer overflow vulnerability exists in the 'cv::RLByteStream::getBytes' function in the modules/imgcodecs/src/bitstrm.cpp file in OpenCV 3.3 and earlier versions. An attacker can exploit this vulnerability to cause ...
Privilege escalation
An elevation of privilege vulnerability in codecs/aacenc/SoftAACEncoder2.cpp in libstagefright in Mediaserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access ...
CVE-2017-0594
CVE-2017-0594 affects Android Mediaserver’s Mediaserver component, specifically codecs/aacenc/SoftAACEncoder2.cpp in libstagefright. The issue is an elevation of privilege vulnerability that could allow a local malicious application to execute arbitrary code within the context of a privileged pro...
Debian Security Advisory DSA 3820-1 (gst-plugins-good1.0 - security update)
Hanno Boeck discovered multiple vulnerabilities in the GStreamer media framework and its codecs and demuxers, which may result in denial of service or the execution of arbitrary code if a malformed media file is opened. OpenVAS Vulnerability Test $Id: deb3820.nasl 6607 2017-07-07 12:04:25Z cfisch...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability related to privilege escalation of the HTC Android operating system’s audio codecs is linked to access control deficiencies. Exploiting this vulnerability allows a remote attacker to execute arbitrary local malware code within the kernel context. This issue is considered “high”...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability of Qualcomm’s Android operating system’s media codecs is related to lack of access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability of Qualcomm’s Android operating system’s media codecs is related to lack of access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability of Qualcomm’s Android operating system’s media codecs is related to lack of access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability related to privilege escalation of the HTC Android operating system’s audio codecs is linked to access control deficiencies. Exploiting this vulnerability allows a remote attacker to execute arbitrary local malware code within the kernel context. This issue is considered “highly...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability of Qualcomm’s Android operating system’s media codecs is related to lack of access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability related to privilege escalation of the HTC Android operating system’s audio codecs is linked to access control deficiencies. Exploiting this vulnerability allows a remote attacker to execute arbitrary local malware code within the kernel context. This issue is considered “highly...