LAME 'id3v2AddAudioDuration' function null pointer reference denial of service vulnerability

LAME is LAME team developed a set of open source MP3 audio compression software . A security vulnerability exists in the 'id3v2AddAudioDuration' function in the libmp3lame/id3tag.c file in LAME version 3.99.5. An attacker can exploit this vulnerability to cause a denial of service null pointer...

[SECURITY] [DSA 3957-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3957-1 [email protected] https://www.debian.org/security/ Luciano Bello August 28, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3957-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3957-1 [email protected] https://www.debian.org/security/ Luciano Bello August 28, 2017 https://www.debian.org/security/faq -...

Debian: Security Advisory (DSA-3957-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

UBUNTU-CVE-2017-13666

An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for planeClipAndMax in MulticoreWare x265 through 2.5, as used in libbpg and other products. A small height value can cause an integer underflow, which leads to a crash. This is a different vulnerability than...

Android Media framework mpeg4 encoder elevation of privilege vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA.Media framework mpeg4 encoder is one of the mpeg4 encoders for multimedia development. An elevation of privilege vulnerability exists in the Media framework mpeg4 encoder in Android...

Privilege escalation

A elevation of privilege vulnerability in the Android media framework mpeg4 encoder. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36075363...

CVE-2017-0731

A elevation of privilege vulnerability in the Android media framework mpeg4 encoder. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36075363...

CVE-2017-0731

A elevation of privilege vulnerability in the Android media framework mpeg4 encoder. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36075363...

CVE-2017-0731

The CVE-2017-0731 entry corresponds to an elevation of privilege in the Android media framework (mpeg4 encoder). According to CNVD-2017-23424, the issue exists in Android’s Media framework mpeg4 encoder and could allow an attacker to execute arbitrary code with elevated privileges. The initial de...

DEBIAN-CVE-2017-11720

There is a division-by-zero vulnerability in LAME 3.99.5, caused by a malformed input file...

LAME Denial of Service Vulnerability (CNVD-2017-20146)

LAME is LAME team developed a set of open source MP3 audio compression software . A security vulnerability exists in the 'fillbufferresample' function in the libmp3lame/util.c file in LAME version 3.99.5. A remote attacker can exploit this vulnerability to cause a denial of service heap buffer...

Hashicorp vagrant-vmware-fusion 4.0.20 - Local Privilege Escalation

Hashicorp vagrant-vmware-fusion 4.0.20 - Local Privilege Escalation I'm a big fan of Hashicorp but this is an awful bug to have in software of their calibre. Their vagrant plugin for vmware fusion uses a product called Ruby Encoder to protect their proprietary ruby code. It does this by turning t...

Hashicorp vagrant-vmware-fusion <= 4.0.20 - Local root Privilege Esclation Exploit

Exploit for macOS platform in category local exploits I'm a big fan of Hashicorp but this is an awful bug to have in software of their calibre. Their vagrant plugin for vmware fusion uses a product called Ruby Encoder to protect their proprietary ruby code. It does this by turning the ruby code...

Hashicorp vagrant-vmware-fusion 4.0.20 Privilege Escalation

CVE-2017-7642 Local root privesc in Hashicorp vagrant-vmware-fusion " - i.e. it doesn't verify the path to the ruby script and it doesn't scrub the PATH variable either. We can easily exploit this to get root. Hashicorp were quick to respond and kindly paid me a small bounty f...

Mozilla Firefox and Firefox ESR Opus encoder out-of-bounds read vulnerability

Mozilla Firefox is an open source web browser. An out-of-bounds read vulnerability exists in the Mozilla Firefox Opus encoder, which can be exploited by a remote attacker to construct a malicious web page and trick the user into parsing it, which can crash the application or execute arbitrary cod...

Interactive Security Reference Tool: BroSec

Interactive Security Reference Tool An interactive reference tool to help security professionals utilize useful payloads and commands Brosec is a terminal based reference utility designed to help us infosec bros and broettes with useful yet sometimes complex payloads and commands that are often...

LAME 3.99.5 - III_dequantize_sample Stack Buffer Overflow

LAME 3.99.5 - IIIdequantizesample Stack Buffer Overflow Description: lame is a high quality MPEG Audio Layer III MP3 encoder licensed under the LGPL. Few notes before the details of this bug. Time ago a fuzz was done by Brian Carpenter and Jakub Wilk which posted the results on the debian...

UBUNTU-CVE-2017-9870

The IIIistereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted audio file that is mishandled in the code for the "blocktype == 2" case, a similar...

UBUNTU-CVE-2017-9130

The faacEncOpen function in libfaac/frame.c in Freeware Advanced Audio Coder FAAC 1.28 allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted wav file...