Lucene search
+L

169 matches found

CNVD
CNVD
added 2016/10/21 12:0 a.m.6 views

Libass Security Bypass Vulnerability

libass is a lightweight library of functions for rendering subtitles in ASS/SSA format. A security bypass vulnerability exists in Libass, which can be exploited by remote attackers to perform unauthenticated operations bypassing security mechanisms...

7.5CVSS7.7AI score0.05186EPSS
Exploits0References1
CNVD
CNVD
added 2016/10/21 12:0 a.m.60 views

Libass Arbitrary Code Execution Vulnerability

libass is a lightweight library of functions for rendering subtitles in ASS/SSA format. An arbitrary code execution vulnerability exists in Libass, which can be exploited by a remote attacker to execute arbitrary code...

7.5CVSS8.3AI score0.04227EPSS
Exploits0References1
CNVD
CNVD
added 2016/10/21 12:0 a.m.5 views

Libass Memory Overflow Vulnerability

libass is a lightweight library of functions for rendering subtitles in ASS/SSA format. A memory overflow vulnerability exists in Libass, which can be exploited by remote attackers to execute arbitrary code...

7.5CVSS8.1AI score0.04747EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/10/20 12:0 a.m.30 views

Debian DLA-668-1 : libass security update

Several vulnerabilities were discovered in libass, a library for manipulating the SubStation Alpha SSA subtitle file format. The Common Vulnerabilities and Exposures project identifies the following issues. CVE-2016-7969 Mode 0/3 line wrapping equalization in specific cases which could result in...

7.5CVSS7.2AI score0.05186EPSS
Exploits0References4
Debian
Debian
added 2016/10/19 11:53 a.m.77 views

[SECURITY] [DLA 668-1] libass security update

Package : libass Version : 0.10.0-3+deb7u1 CVE ID : CVE-2016-7969 CVE-2016-7972 Several vulnerabilities were discovered in libass, a library for manipulating the SubStation Alpha SSA subtitle file format. The Common Vulnerabilities and Exposures project identifies the following issues...

7.5CVSS8.3AI score0.05186EPSS
Exploits0
OSV
OSV
added 2016/10/19 12:0 a.m.29 views

DLA-668-1 libass - security update

Bulletin has no description...

7.5CVSS7.5AI score0.05186EPSS
Exploits0
ossfuzz
ossfuzz
added 2016/10/14 2:3 a.m.15 views

Global-buffer-overflow in ass_strtod

Project: https://github.com/libass/libass.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5993566283235328 Fuzzer: libFuzzerlibassfuzzer Job Type: libfuzzerasanlibass Platform Id: linux Crash Type: Global-buffer-overflow READ 8 Crash Address: 0x000000843720 Crash State:...

7.2AI score
Exploits0Affected Software1
OSV
OSV
added 2016/10/12 3:9 p.m.5 views

MGASA-2016-0341 Updated libass packages fixes security vulnerabilities

Amount of memory allocated during memory reallocation in the shaper wasn't tracked, possibly resulting in undefined behavior CVE-2016-7972. Illegal read in Gaussian blur coefficient calculations CVE-2016-7970. Mode 0/3 line wrapping equalization in specific cases could result in illegal reads whi...

7.5CVSS7.5AI score0.05186EPSS
Exploits0References3
Mageia
Mageia
added 2016/10/12 3:9 p.m.29 views

Updated libass packages fixes security vulnerabilities

Amount of memory allocated during memory reallocation in the shaper wasn't tracked, possibly resulting in undefined behavior CVE-2016-7972. Illegal read in Gaussian blur coefficient calculations CVE-2016-7970. Mode 0/3 line wrapping equalization in specific cases could result in illegal reads whi...

7.5CVSS2.7AI score0.05186EPSS
Exploits0References2
Rows per page
Query Builder