25 matches found
CVE-2021-0635
CVE-2021-0635 affects the Video component (Unisoc/Android 10) where extracting an incorrectly formatted FLV file can corrupt memory, causing a crash and video playback failure. The Red Hat/NVD entries describe potential for malicious code execution leading to loss of user rights, with CVSS 3.1 ba...
CVE-2021-0636
When extracting the incorrectly formatted avi file, the memory is damaged, the playback interface shows that the video cannot be played, and the log is found to be crashed. This problem may lead to hacker malicious code attacks, resulting in the loss of user rights.Product: Androidversion:...
The vulnerability affects the implementation of the AMD Secure Processor technology in CPUs such as Ryzen, Ryzen Pro, Ryzen Mobile, and EPYC Server. This allows malicious code to be injected into a computer’s BIOS.
The vulnerability of AMD Secure Processor-based processors, such as Ryzen, Ryzen Pro, Ryzen Mobile, and EPYC Server, stems from the absence of a mechanism for detecting damage to flash memory contents. Exploiting this vulnerability allows an attacker who has access to the targeted computer and...
CVE-2 0 1 6-1 0 1 9 Flash vulnerability being added to exploit kit package-vulnerability warning-the black bar safety net
4 on number 2, security researcher @Kafeine found that Magnitude of vulnerability use tools to pack a few changes. Very grateful he found the collection of these samples, we analyzed them and found that the Magnitude of the tool in the package to update an unknown Adobe Flash PlayerCVE-2 0 1 6-1 ...
Linux Kernel “sound/oss/midi_synth.c”内存破坏漏洞
BUGTRAQ ID: 47007 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel “sound/oss/midisynth.c”在实现上存在内存破坏漏洞,本地攻击者可利用此漏洞造成内存破坏,在非x86架构上,可允许攻击者运行任意代码,造成拒绝服务。此漏洞亦可影响OSS子系统。 传递到midisynthloadpatch的偏移可以是任意的,如果大于标头值,会造成copyfromuserdst, src,...