CVE-2025-60486

A heap use-after-free in the dasherprocess function /filters/dasher.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS via supplying a crafted MPEG-2 file...

Linux Distros Unpatched Vulnerability : CVE-2025-60486

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap use-after-free in the dasherprocess function /filters/dasher.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS vi...

CVE-2025-60486

A heap use-after-free in the dasherprocess function /filters/dasher.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS via supplying a crafted MPEG-2 file...

CVE-2025-60486

A heap use-after-free in the dasherprocess function /filters/dasher.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS via supplying a crafted MPEG-2 file...

EUVD-2025-210006

A heap use-after-free in the dasherprocess function /filters/dasher.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS via supplying a crafted MPEG-2 file...

CVE-2025-60486

A heap use-after-free in the dasherprocess function /filters/dasher.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS via supplying a crafted MPEG-2 file...

CVE-2025-60486

A heap use-after-free in the dasherprocess function /filters/dasher.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS via supplying a crafted MPEG-2 file...

CVE-2025-60486

Affected software: GPAC Project/MP4Box. Vulnerability: heap use-after-free in the dasher_process function ( /filters/dasher.c ). Root cause: heap-use-after-free flaw that can be triggered via crafted MPEG-2 input. Impact: Denial of Service (DoS). Versions: vulnerable before 26.02.0. Exploitation ...

The vulnerability of the MPEG-2 Video Extension codec in Microsoft Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the MPEG-2 Video Extension codec in Microsoft Windows operating systems relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

SUSE CVE-2021-38381

Live555 through 1.08 does not handle MPEG-1 or 2 files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash...

Live555资源管理错误漏洞

Live555 is a cross-platform C open source project that provides a solution for streaming media, which implements support for standard streaming media delivery protocols such as RTP/RTCP, RTSP, SIP, etc. A security vulnerability exists in Live555, which stems from the fact that the affected produc...

Bento4 Buffer Overflow Vulnerability (CNVD-2019-07062)

Bento4 is an open source C++ library for reading and writing MP4 files. A buffer overflow vulnerability exists in the 'AP4Mpeg2TsAudioSampleStream::WriteSample' function in the Core/Ap4Mpeg2Ts.cpp file in Bento4 version 1.5.1-624, which can be exploited by an attacker to can be exploited to cause...

Google Android Media framework (libmpeg2) Extinct Service Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA. media framework libmpeg2 is one of the mpeg2 decoding libraries used for multimedia development. A denial of service vulnerability exists in Media frameworklibmpeg2 in Android. A...

Android Media framework mpeg2 decoder remote code execution vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA, and Media framework mpeg2 decoder is one of the mpeg2 decoders used for multimedia development. A remote code execution vulnerability exists in the Media framework mpeg2 decoder in...

CVE-2017-0718

A remote code execution vulnerability in the Android media framework mpeg2 decoder. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37273547...

CVE-2017-0719

A remote code execution vulnerability in the Android media framework mpeg2 decoder. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37273673...

kernel: dvb-core: DoS bug in ULE decapsulation code

The ULE decapsulation functionality in drivers/media/dvb/dvb-core/dvbnet.c in dvb-core in Linux kernel 2.6.33 and earlier allows attackers to cause a denial of service infinite loop via a crafted MPEG2-TS frame, related to an invalid Payload Pointer ULE...