CVE-2019-9720

CVE-2019-9720 affects Libav 12.3: a stack-based buffer overflow in the subtitle decoder due to incorrect use of snprintf in libavcodec/srtdec.c (srt_to_ass). Exploitation via a crafted Matroska video file can corrupt the stack. No explicit remediation details are given in the provided documents; ...

CVE-2019-9720

A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srttoass in libavcodec/srtdec.c misuses snprintf...

CVE-2019-9719

Libav 12.3 contains a stack-based buffer overflow in the subtitle decoder (srt_to_ass in libavcodec/srtdec.c) triggered by crafted Matroska video files; the issue stems from misusing snprintf. Multiple sources (Red Hat, SUSE, Ubuntu, OSV, and others) describe a vulnerability with claims of disput...

CVE-2019-9717

In Libav 12.3, a denial of service in the subtitle decoder allows attackers to hog the CPU via a crafted video file in Matroska format, because srttoass in libavcodec/srtdec.c has a complex format argument to sscanf...

CVE-2019-9717

CVE-2019-9717 affects Libav 12.3, specifically the subtitle decoder in libavcodec/srtdec.c (function srt_to_ass). A crafted Matroska video file can cause a denial of service by hogging CPU, due to a complex format argument to sscanf in srt_to_ass. The available documents provide the vulnerability...

PT-2019-19819 · FFmpeg · Libav

Name of the Vulnerable Software and Affected Versions: Libav version 12.3 Description: A stack-based buffer overflow issue exists in the subtitle decoder of Libav, potentially allowing attackers to corrupt the stack via a crafted video file in Matroska format. This issue arises from the misuse of...

Libav Buffer Overflow Vulnerability (CNVD-2019-35787)

Libav is Libav team's set of cross-platform audio and video can be recorded, converted solution, which includes a libavcodec encoder. A buffer overflow vulnerability exists in the subtitle decoder in Libav version 12.3, which can be exploited by an attacker to cause, among other things, a buffer...

Libav Buffer Overflow Vulnerability (CNVD-2019-35776)

Libav is Libav team's set of cross-platform audio and video can be recorded, converted solution, which includes a libavcodec encoder. A buffer overflow vulnerability exists in the subtitle decoder in Libav version 12.3, which can be exploited by an attacker to cause, among other things, a buffer...

[SECURITY] Fedora 29 Update: jbig2dec-0.16-1.fc29

jbig2dec is a decoder implementation of the JBIG2 image compression format. JBIG2 is designed for lossy or lossless encoding of 'bilevel' 1-bit monochrome images at moderately high resolution, and in particular scanned paper documents. In this domain it is very efficient, offering compression...

Jenkins plug-in vulnerabilities: plaintext stored credentials disclosure-vulnerability warning-the black bar safety net

Jenkins is a widely used open source automation server, allows DevOps developers to efficiently and reliably build, test, and deploy software. In order to use Jenkins modular architecture, developers can plug-ins to extend its core features, allowing it to expand the script capabilities...

bsdcpio, bsdtar, libarchive security update

CentOS Errata and Security Advisory CESA-2019:2298 An update for libarchive is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severi...

Security fix for the ALT Linux 10 package libarchive version 3.4.0-alt1

Aug. 22, 2019 Aleksei Nikiforov 3.4.0-alt1 - Updated to upstream version 3.4.0. - Fixes: + CVE-2018-1000877 Double Free vulnerability in RAR decoder + CVE-2018-1000878 Use After Free vulnerability in RAR decoder + CVE-2018-1000879 NULL Pointer Dereference vulnerability in ACL parser +...

CVE-2019-15296

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The faadresetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld-buffersize - words4, cast to uint32. If ld-buffersize - words4 is negative, a...

DEBIAN-CVE-2019-15296

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The faadresetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld-buffersize - words4, cast to uint32. If ld-buffersize - words4 is negative, a...

CVE-2019-15296

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The faadresetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld-buffersize - words4, cast to uint32. If ld-buffersize - words4 is negative, a...

ALPINE-CVE-2019-15296

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The faadresetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld-buffersize - words4, cast to uint32. If ld-buffersize - words4 is negative, a...

CVE-2019-15296

FAAD2 vulnerability CVE-2019-15296 affects Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. The faad_resetbits function in libfaad/bits.c can read a negative remaining buffer size (ld->buffer_size - words*4), leading to a buffer overflow via getdword_n, with the impact described as potential d...

Freeware Advanced Audio Decoder 2 Buffer Overflow Vulnerability (CNVD-2020-22386)

Freeware Advanced Audio Decoder 2 FAAD2 is a free advanced audio encoder. A buffer overflow vulnerability exists in Freeware Advanced Audio Decoder 2. The vulnerability originates when a networked system or product performs an operation in memory without properly validating data boundaries,...

Linux/x86_64 - AVX2 XOR Decoder + execve(/bin/sh) Shellcode (62 bytes)

/ ; Title : Linux/x8664 - AVX2 XOR Decoder + execve"/bin/sh" 62 bytes ; Author : Gonçalo Ribeiro @goncalor ; Website : goncalor.com ; SLAE64-ID : 1635 ; this only works on machines with a CPU that supports AVX2 instructions global start start: jmp calldecoder decoder: pop rsi lea rdi, rsi+1 ;...

CVE-2019-15133

In GIFLIB before 2019-02-16, a malformed GIF file triggers a divide-by-zero exception in the decoder function DGifSlurp in dgiflib.c if the height field of the ImageSize data structure is equal to zero...