169 matches found
Libass Security Bypass Vulnerability
libass is a lightweight library of functions for rendering subtitles in ASS/SSA format. A security bypass vulnerability exists in Libass, which can be exploited by remote attackers to perform unauthenticated operations bypassing security mechanisms...
Libass Arbitrary Code Execution Vulnerability
libass is a lightweight library of functions for rendering subtitles in ASS/SSA format. An arbitrary code execution vulnerability exists in Libass, which can be exploited by a remote attacker to execute arbitrary code...
Libass Memory Overflow Vulnerability
libass is a lightweight library of functions for rendering subtitles in ASS/SSA format. A memory overflow vulnerability exists in Libass, which can be exploited by remote attackers to execute arbitrary code...
Debian DLA-668-1 : libass security update
Several vulnerabilities were discovered in libass, a library for manipulating the SubStation Alpha SSA subtitle file format. The Common Vulnerabilities and Exposures project identifies the following issues. CVE-2016-7969 Mode 0/3 line wrapping equalization in specific cases which could result in...
[SECURITY] [DLA 668-1] libass security update
Package : libass Version : 0.10.0-3+deb7u1 CVE ID : CVE-2016-7969 CVE-2016-7972 Several vulnerabilities were discovered in libass, a library for manipulating the SubStation Alpha SSA subtitle file format. The Common Vulnerabilities and Exposures project identifies the following issues...
DLA-668-1 libass - security update
Bulletin has no description...
Global-buffer-overflow in ass_strtod
Project: https://github.com/libass/libass.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5993566283235328 Fuzzer: libFuzzerlibassfuzzer Job Type: libfuzzerasanlibass Platform Id: linux Crash Type: Global-buffer-overflow READ 8 Crash Address: 0x000000843720 Crash State:...
MGASA-2016-0341 Updated libass packages fixes security vulnerabilities
Amount of memory allocated during memory reallocation in the shaper wasn't tracked, possibly resulting in undefined behavior CVE-2016-7972. Illegal read in Gaussian blur coefficient calculations CVE-2016-7970. Mode 0/3 line wrapping equalization in specific cases could result in illegal reads whi...
Updated libass packages fixes security vulnerabilities
Amount of memory allocated during memory reallocation in the shaper wasn't tracked, possibly resulting in undefined behavior CVE-2016-7972. Illegal read in Gaussian blur coefficient calculations CVE-2016-7970. Mode 0/3 line wrapping equalization in specific cases could result in illegal reads whi...