Fedora: Security Advisory for go-avif (FEDORA-2021-1c3f7963a5)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 34 Update: go-avif-0.1.0-8.fc34

Go-avif implements AVIF AV1 Still Image File Format encoder for Go using libaom, the high quality AV1 codec...

[SECURITY] Fedora 34 Update: aom-3.1.1-1.fc34

The Alliance for Open Media=EF=BF=BD=EF=BF=BD=EF=BF=BDs focus is to deliver a next-generation video format that is: - Interoperable and open; - Optimized for the Internet; - Scalable to any modern device at any bandwidth; - Designed with a low computational footprint and optimized for hardware; -...

Unauthorized Access Vulnerability in AXIS M7014 Video Encoder

Axis is an IT company that specializes in providing web video solutions. An unauthorized access vulnerability exists in AXIS M7014 Video Encoder, which can be exploited by attackers to obtain sensitive information...

Unauthorized Access Vulnerability in AXIS P7214 Video Encoder

Axis is an IT company that specializes in providing web video solutions. An unauthorized access vulnerability exists in AXIS P7214 Video Encoder, which can be exploited by attackers to obtain sensitive information...

SUSE SLES11 Security Update : jasper (SUSE-SU-2021:14627-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:14627-1 advisory. - There's a flaw in jasper's jpc encoder in versions prior to 2.0.23. Crafted input provided to jasper by an attacker could cause an arbitrary...

SUSE: Security Advisory (SUSE-SU-2016:1290-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PUB-A-174302683

In appendtoverifyfifointerleaved of streamencoder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

DEBIAN-CVE-2020-22028

Buffer Overflow vulnerability exists in FFmpeg 4.2 in filtervertically8 at libavfilter/vfavgblur.c, which could cause a remote Denial of Service...

DEBIAN-CVE-2020-22021

Buffer Overflow vulnerability in FFmpeg 4.2 at filteredges function in libavfilter/vfyadif.c, which could let a remote malicious user cause a Denial of Service...

CVE-2020-21041

Buffer Overflow vulnerability exists in FFmpeg 4.1 via apngdoinverseblend in libavcodec/pngenc.c, which could let a remote malicious user cause a Denial of Service...

rhel8 bug fix and enhancement update

An update is available for jmc, ee4j-parent, jaf, HdrHistogram, lz4-java, owasp-java-encoder, directory-maven-plugin, jmc-core. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

Vulnerabilities fixed in Adobe products

Adobe has fixed several vulnerabilities in After Effects, Creative Cloud, Illustrator, InDesign and Media Encoder. The vulnerabilities potentially allow a malicious party to launch attacks execute attacks that result in the following categories of damage: Remote code execution User rights. Access...

AZL-44814 CVE-2020-27823 affecting package openjpeg2 for versions less than 2.3.1-12

A flaw was found in OpenJPEG’s encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

CVE-2020-27823

A flaw was found in OpenJPEG’s encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

CVE-2020-27823

A flaw was found in OpenJPEG’s encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

ALPINE-CVE-2020-27823

A flaw was found in OpenJPEG’s encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

DEBIAN-CVE-2020-27823

A flaw was found in OpenJPEG’s encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

Input validation

A flaw was found in OpenJPEG’s encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

CVE-2020-27824

A flaw was found in OpenJPEG’s encoder in the opjdwtcalcexplicitstepsizes function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow. The highest threat from this vulnerability is to system availability...