CVE-2021-39548

An issue was discovered in sela through 20200412. A NULL pointer dereference exists in the function frame::FrameDecoder::process located in framedecoder.c. It allows an attacker to cause Denial of Service...

DEBIAN-CVE-2021-39516

An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function HuffmanDecoder::Get located in huffmandecoder.hpp. It allows an attacker to cause Denial of Service...

UBUNTU-CVE-2021-39516

An issue was discovered in libjpeg through 2020021. A NULL pointer dereference exists in the function HuffmanDecoder::Get located in huffmandecoder.hpp. It allows an attacker to cause Denial of Service...

heif 缓冲区错误漏洞

HEIF refers to High Efficiency Image File Format, a file format for single images or image sequences. hevcDecoderConfigurationRecord::getPicWidth function in hevcdecoderconfigrecord.cpp in HEIF 3.6.2 and earlier versions has global buffer overflow vulnerability. An attacker can exploit this...

Sela 代码问题漏洞

SELA is a lossless audio codec. A null pointer dereference vulnerability exists in the frame::FrameDecoder::process function in framedecoder.c in SELA 20200412 and earlier versions. An attacker can exploit this vulnerability to cause a denial of service...

Faad2 缓冲区错误漏洞

Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. a stack buffer overflow vulnerability exists in the ftypin function in mp4read.c in FAAD2 2.10.0 and earlier versions. An attacker could exploit this vulnerability to execute...

Faad2 缓冲区错误漏洞

Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. sbrqmfsynthesis64 function in sbrqmf.c in FAAD2 2.10.0 and earlier versions is vulnerable to a heap buffer overflow vulnerability. An attacker could exploit this vulnerability...

libjpeg 代码问题漏洞

libjpeg is a free library written entirely in C to handle the JPEG image data format. libjpeg 2020021 and earlier versions of huffmandecoder.hpp contain a null pointer dereference vulnerability in the HuffmanDecoder::Get function. An attacker can exploit this vulnerability to cause a denial of...

Sela 代码问题漏洞

SELA is a lossless audio codec. a null pointer dereference vulnerability exists in the rice::RiceDecoder::process function in ricedecoder.c in SELA 20200412 and earlier versions. An attacker can exploit this vulnerability to cause a denial of service...

Sela 缓冲区错误漏洞

SELA is a lossless audio codec. a heap buffer overflow vulnerability exists in rice::RiceDecoder::process in ricedecoder.cpp in SELA 20200412 and earlier versions. No detailed vulnerability details are currently available...

Faad2 缓冲区错误漏洞

Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. a heap buffer overflow vulnerability exists in the stszin function in mp4read.c in FAAD2 version 2.10.0 and earlier. An attacker could exploit this vulnerability to execute co...

Faad2 缓冲区错误漏洞

Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. ltprediction function in ltpredict.c in FAAD2 2.10.0 and earlier versions is vulnerable to a heap buffer overflow vulnerability. An attacker could exploit this vulnerability t...

golang: encoding/xml: infinite loop when using xml.NewTokenDecoder with a custom TokenReader

An infinite loop vulnerability was found in golang. If an application defines a custom token parser initializing with xml.NewTokenDecoder it is possible for the parsing loop to never return. An attacker could potentially craft a malicious XML document which has an XML element with EOF within it,...

EulerOS 2.0 SP2 : jasper (EulerOS-SA-2021-2387)

According to the versions of the jasper package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in jasper before 2.0.25. An out of bounds read issue was found in jp2decode function whic may lead to disclosure of information ...

Denial Of Service(DoS)

netty-codec is vulnerable to denial of service. The vulnerability exists due to lack of allocation size restriction on the decompressed output data in the Snappy frame decoder function, leading to an OOME...

GHSA-GRG4-WF29-R9VV Bzip2Decoder doesn't allow setting size restrictions for decompressed data

Impact The Bzip2 decompression decoder function doesn't allow setting size restrictions on the decompressed output data which affects the allocation size used during decompression. All users of Bzip2Decoder are affected. The malicious input can trigger an OOME and so a DoS attack Workarounds No...

PT-2021-7976 · Netty +5 · Netty +5

Name of the Vulnerable Software and Affected Versions: Netty versions prior to 4.1.67.Final Description: The Snappy frame decoder function does not restrict the chunk length, which may lead to excessive memory usage. Additionally, it may buffer reserved skippable chunks until the whole chunk is...

CVE-2021-30737

A memory corruption issue in the ASN.1 decoder was addressed by removing the vulnerable code. This issue is fixed in tvOS 14.6, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6, iOS 12.5.4, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. Processing a maliciously craft...

Memory corruption

A memory corruption issue in the ASN.1 decoder was addressed by removing the vulnerable code. This issue is fixed in tvOS 14.6, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6, iOS 12.5.4, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. Processing a maliciously craft...

CVE-2021-30737

CVE-2021-30737 is an iOS/macOS NSS ASN.1 decoding issue in Apple’s secasn1d.c, fixed in iOS 14.6. The root cause is a memory corruption primitive arising from Apple’s NSS fork’s ASN.1 bit-string handling. A path in sec_asn1d_parse_bit_string can set the destination item’s Data pointer to NULL for...