The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in the possibility of an operation going beyond the buffer in memory, allowing a hacker to execute arbitrary code.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to the execution of operations beyond buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code on the target system using a specially created file...

ALPINE-CVE-2020-21606

libde265 v1.0.4 contains a heap buffer overflow fault in the putepel16fallback function, which can be exploited via a crafted a file...

CVE-2020-21606

libde265 v1.0.4 contains a heap buffer overflow fault in the putepel16fallback function, which can be exploited via a crafted a file...

DEBIAN-CVE-2020-21602

libde265 v1.0.4 contains a heap buffer overflow in the putweightedbipred16fallback function, which can be exploited via a crafted a file...

UBUNTU-CVE-2020-21596

libde265 v1.0.4 contains a global buffer overflow in the decodeCABACbit function, which can be exploited via a crafted a file...

Heap overflow

libde265 v1.0.4 contains a heap buffer overflow fault in the putepel16fallback function, which can be exploited via a crafted a file...

CVE-2020-21601

libde265 v1.0.4 contains a stack buffer overflow in the putqpelfallback function, which can be exploited via a crafted a file...

CVE-2020-21596

libde265 v1.0.4 contains a global buffer overflow in the decodeCABACbit function, which can be exploited via a crafted a file...

CVE-2020-21600

libde265 v1.0.4 contains a heap buffer overflow in the putweightedpredavg16fallback function, which can be exploited via a crafted a file...

3s-smart Software Solutions CODESYS Development System 代码问题漏洞

3s-smart Software Solutions CODESYS Development System is a set of programming tools for the field of industrial controllers and automation technology from 3S-Smart Software Solutions 3s-smart Software Solutions, Germany. A code issue vulnerability exists in the PackageManagement.plugin...

The vulnerability of the MogrifyImageList function in the MagickWand/mogrify.c component of the console-based ImageMagick graphics editor allows a hacker to trigger a service failure by exploiting a deficiency in the use of the assert() function.

The vulnerability of the MogrifyImageList function in the MagickWand/mogrify.c component of the console-based ImageMagick graphics editor is related to the insufficient use of the assert function. Exploiting this vulnerability allows a malicious actor to trigger a service failure using a speciall...

Accusoft ImageGear 缓冲区错误漏洞

Accusoft ImageGear is a multi-platform, multi-language document imaging developer toolkit. An out-of-bounds write vulnerability exists in the TIF bitspersample handling function in Accusoft ImageGear version 19.9. An attacker can exploit the vulnerability via a specially crafted file to cause...

GPAC 缓冲区错误漏洞

GPAC is a multimedia framework for rich media and distributed under the LGPL license. A memory leak vulnerability exists in the stblGetSampleInfos function in MP4Box in GPAC version 1.0.1. An attacker can exploit this vulnerability to read memory via specially crafted files...

GPAC 代码问题漏洞

GPAC is a multimedia framework for rich media and distributed under the LGPL license. A null pointer dereference vulnerability exists in the HintFile function in GPAC version 1.0.1. An attacker can exploit this vulnerability via a specially crafted file to cause a denial of service...

Accusoft ImageGear 缓冲区错误漏洞

Accusoft ImageGear is a multi-platform, multi-language document imaging developer toolkit. An out-of-bounds write vulnerability exists in the SGI format buffer size handling feature of Accusoft ImageGear 19.8. An attacker can exploit the vulnerability by supplying a specially crafted malicious fi...

DEBIAN-CVE-2021-21772

A use-after-free vulnerability exists in the NMR::COpcPackageReader::releaseZIP functionality of 3MF Consortium lib3mf 2.0.0. A specially crafted 3MF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

UBUNTU-CVE-2021-20243

A flaw was found in ImageMagick in MagickCore/resize.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability...

Industrial Light And Magic OpenEXR 代码问题漏洞

Industrial Light and Magic Academy Software Foundation OpenEXR is an image file format from Industrial Light and Magic for High Dynamic Range HDR images.A code issue vulnerability exists in Industrial Light and Magic Academy Software Foundation OpenEXR, which stems from A null pointer compliance...

The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are due to the “race-to-privilege” scenario, which allows a malicious actor to escalate their privileges.

The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are due to a “race-to-the-bottom” scenario. Exploiting these vulnerabilities can allow an attacker to enhance their privileges...

Imagemagick Studio ImageMagick Input Validation Error Vulnerability (CNVD-2020-70257)

Imagemagick Studio ImageMagick is a suite of open source image processing software from ImageMagick Studio Imagemagick Studio, an American company. The software can read, convert or write images in many formats. A security vulnerability exists in versions prior to ImageMagick 7.0.8-68, which stem...