ROS-20260615-73-0008

The vulnerability of the StreamEnsureCapacity function in the RDP client FreeRDP is caused by a numerical overflow condition. Exploiting this vulnerability could allow an attacker, operating remotely, to cause service failures...

freerdp: FreeRDP: Denial of Service via endless blocking loop in Stream_EnsureCapacity

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol. The StreamEnsureCapacity function can create an endless blocking loop, leading to a Denial of Service DoS. This vulnerability can be exploited on 32-bit systems where the available physical memory is greater than o...

DEBIAN-CVE-2026-27951

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the function StreamEnsureCapacity can create an endless blocking loop. This may affect all client and server implementations using FreeRDP. For practical exploitation this will only work on 32bit systems whe...

UBUNTU-CVE-2026-27951

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the function StreamEnsureCapacity can create an endless blocking loop. This may affect all client and server implementations using FreeRDP. For practical exploitation this will only work on 32bit systems whe...

CVE-2026-27951

Freerdp CVE-2026-27951 affects all FreeRDP clients/servers prior to 3.23.0, where Stream_EnsureCapacity can loop endlessly on 32‑bit systems with physical memory >= SIZE_MAX. Impact: potential denial of service (availability). Mitigation: upgrade to 3.23.0 or later (patch included). If exploit...

CVE-2026-27951

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the function StreamEnsureCapacity can create an endless blocking loop. This may affect all client and server implementations using FreeRDP. For practical exploitation this will only work on 32bit systems whe...

CVE-2026-27951

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the function StreamEnsureCapacity can create an endless blocking loop. This may affect all client and server implementations using FreeRDP. For practical exploitation this will only work on 32bit systems whe...

EUVD-2026-8755

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the function StreamEnsureCapacity can create an endless blocking loop. This may affect all client and server implementations using FreeRDP. For practical exploitation this will only work on 32bit systems whe...

PT-2026-22022

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.23.0 Description The Stream EnsureCapacity function in FreeRDP versions prior to 3.23.0 can create an endless blocking loop. This issue may affect all client and server implementations using FreeRDP. Exploitation is...

Linux Distros Unpatched Vulnerability : CVE-2019-7698

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in AP4Array::EnsureCapacity in Core/Ap4Array.h in Bento4 1.5.1-627. Crafted MP4 input triggers an attempt at excessive memory allocation...

Bento4 Ap4Array.h Denial of Service Vulnerability

Bento4 is an open source C++ library for reading and writing MP4 files. A denial of service vulnerability exists in Bento4 version 1.6.0-639, which stems from excessive memory consumption in the AP4Array ::EnsureCapacity function in Core/Ap4Array.h. The vulnerability can be exploited to cause a...

CVE-2022-41845

An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in the function AP4Array::EnsureCapacity in Core/Ap4Array.h...

PT-2022-26095 · Bento4 · Bento4

Name of the Vulnerable Software and Affected Versions: Bento4 version 1.6.0-639 Description: An issue in Bento4 leads to excessive memory consumption in the AP4 Array::EnsureCapacity function, located in Core/Ap4Array.h. Recommendations: For Bento4 version 1.6.0-639, consider applying a patch or...

CVE-2022-41845

An issue was discovered in Bento4 1.6.0-639. There ie excessive memory consumption in the function AP4Array::EnsureCapacity in Core/Ap4Array.h...

UBUNTU-CVE-2021-40941

In Bento4 1.6.0-638, there is an allocator is out of memory in the function AP4Array::EnsureCapacity in Ap4Array.h:172, as demonstrated by GPAC. This can cause a denial of service DOS...

Bento4 Excessive Memory Allocation Attempt Vulnerability (CNVD-2019-28481)

Bento4 is a C++ class library and tool for reading and writing ISO-MP4 files. An excessive memory allocation attempt vulnerability exists in AP4Array::EnsureCapacity in Core/Ap4Array.h in Bento4 1.5.1-627, which can be exploited to cause an out-of-memory condition via specially crafted MP4 input...

UBUNTU-CVE-2019-7698

An issue was discovered in AP4Array::EnsureCapacity in Core/Ap4Array.h in Bento4 1.5.1-627. Crafted MP4 input triggers an attempt at excessive memory allocation, as demonstrated by mp42hls, a related issue to CVE-2018-20095...

Unspecified Vulnerability in Bento4

Bento4 is an open source C++ library for reading and writing MP4 files. A security vulnerability exists in the EnsureCapacity method of the Core/Ap4Array.h file in Bento4 version 1.5.1-627. An attacker can exploit the vulnerability to allocate a large amount of memory with the help of specially...

CVE-2018-20095

An issue was discovered in EnsureCapacity in Core/Ap4Array.h in Bento4 1.5.1-627. Crafted MP4 input triggers an attempt at excessive memory allocation, as demonstrated by mp42hls...

UBUNTU-CVE-2018-20095

An issue was discovered in EnsureCapacity in Core/Ap4Array.h in Bento4 1.5.1-627. Crafted MP4 input triggers an attempt at excessive memory allocation, as demonstrated by mp42hls...