DEBIAN-CVE-2020-27824

A flaw was found in OpenJPEG’s encoder in the opjdwtcalcexplicitstepsizes function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow. The highest threat from this vulnerability is to system availability...

Buffer overflow

A flaw was found in OpenJPEG’s encoder in the opjdwtcalcexplicitstepsizes function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow. The highest threat from this vulnerability is to system availability...

CVE-2020-27823

OpenJPEG2 contains CVE-2020-27823 affecting the OpenJPEG encoder. Connected advisories confirm multiple related issues (e.g., heap-buffer-overflow and out-of-bounds reads/writes) across OpenJPEG versions up to 2.4.0, with Affected packages including openjpeg2 and OpenJPEG 2.x components. The root...

CVE-2020-27823

A flaw was found in OpenJPEG’s encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

CVE-2020-27823

A flaw was found in OpenJPEG’s encoder. This flaw allows an attacker to pass specially crafted x,y offset input to OpenJPEG to use during encoding. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

CVE-2020-27824

A flaw was found in OpenJPEG’s encoder in the opjdwtcalcexplicitstepsizes function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow. The highest threat from this vulnerability is to system availability...

CVE-2020-27824

OpenJPEG2 CVE-2020-27824 affects the encoder code path opj_dwt_calc_explicit_stepsizes(), where crafted input to decomposition levels can trigger a buffer overflow. The highest stated impact is to availability. Public advisories show remediations via updated openjpeg2 packages (e.g., Debian openj...

CVE-2020-27824

A flaw was found in OpenJPEG’s encoder in the opjdwtcalcexplicitstepsizes function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow. The highest threat from this vulnerability is to system availability...

CVE-2020-27824

A flaw was found in OpenJPEG’s encoder in the opjdwtcalcexplicitstepsizes function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow. The highest threat from this vulnerability is to system availability...

Teradici PCoIP Graphics Agent 代码问题漏洞

Teradici PCoIP Graphics Agent is an agent program from Teradici Canada that delivers GPU-enabled physical and virtual workstations to end users via a remote client. A security vulnerability exists in Teradici PCoIP Graphics Agent version 21.03. The vulnerability stems from the program not...

Adobe Media Encoder < 15.2 Privilege escalation (APSB21-32)

The version of Adobe Media Encoder installed on the remote Windows host is prior to 15.2. It is, therefore, affected by a vulnerability as referenced in the APSB21-32 advisory. - Adobe Media Encoder version 15.1 and earlier is affected by an Out-of-bounds Read vulnerability when parsing a special...

CVE-2021-27383

A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7" & 15" incl. SIPLUS variants All versions V15.1 Update 6, SIMATIC HMI Comfort Outdoor Panels V16 7" & 15" incl. SIPLUS variants All versions V16 Update 4, SIMATIC HMI Comfort Panels V15 4" - 22" incl. SIPLUS...

CVE-2021-27383

A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7" & 15" incl. SIPLUS variants All versions V15.1 Update 6, SIMATIC HMI Comfort Outdoor Panels V16 7" & 15" incl. SIPLUS variants All versions V16 Update 4, SIMATIC HMI Comfort Panels V15 4" - 22" incl. SIPLUS...

Alert: Hackers Exploit Adobe Reader 0-Day Vulnerability in the Wild

Adobe has released Patch Tuesday updates for the month of May with fixes for multiple vulnerabilities spanning 12 different products, including a zero-day flaw affecting Adobe Reader that's actively exploited in the wild. The list of updated applications includes Adobe Experience Manager, Adobe...

[SECURITY] Fedora 32 Update: djvulibre-3.5.27-25.fc32

DjVu is a web-centric format and software platform for distributing documen ts and images. DjVu can advantageously replace PDF, PS, TIFF, JPEG, and GIF for distributing scanned documents, digital documents, or high-resolution pictu res. DjVu content downloads faster, displays and renders faster,...

Adobe Media Encoder 缓冲区错误漏洞

Adobe Media Encoder is a video and audio encoding application. An out-of-bounds read vulnerability exists in Adobe Media Encoder 15.1 and earlier versions. An attacker can exploit the vulnerability to elevate privileges...

Adobe Media Encoder Out-of-Bounds Read Vulnerability (CNVD-2021-49602)

Adobe Media Encoder is a video and audio encoding application. An out-of-bounds read vulnerability exists in Adobe Media Encoder 15.1 and earlier versions. An attacker can exploit the vulnerability to elevate privileges...

CVE-2021-28569

Adobe Media Encoder version 15.1 and earlier is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to disclose sensitive memory information in the context of the current user. Exploitation of this...

APSB21-32 Security update available for Adobe Media Encoder

Adobe has released an update for Adobe Media Encoder. This update resolves an important vulnerability that could lead to arbitrary code execution in the context of the current user...

org.webjars.npm:directory-encoder (=0.7.2), org.webjars.npm:okta__okta-signin-widget (=2.21.0) potentially affected by CVE-2021-23369 via org.webjars.npm:handlebars (>=1.3.0 <=4.0.14)

org.webjars.npm:handlebars MAVEN version =1.3.0, =4.0.14 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:handlebars and may be impacted: - org.webjars.npm:directory-encoder =0.7.2 - org.webjars.npm:oktaokta-signin-widget =2.21.0 Source...