GPAC buffer overflow vulnerability (CNVD-2020-00232)

GPAC is an open source multimedia framework. A buffer error vulnerability exists in the 'av1parsetilegroup' function in the mediatools/avparsers.c file in GPAC versions 0.8.0 and 0.9.0-development-20191109. The vulnerability stems from a networked system or product performing operations in memory...

Google Android Media Framework Code Execution Vulnerability (CNVD-2019-40851)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. Media Framework is one of the multimedia development frameworks. A code execution vulnerability exists in Media framework in Android. An attacker can exploit this vulnerability to execu...

Debian DSA-4502-1 : ffmpeg - security update

Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

Debian: Security Advisory (DSA-4502-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 1841-1] gpac security update

Package : gpac Version : 0.5.0+svn5324dfsg1-1+deb8u4 CVE ID : CVE-2019-12481 CVE-2019-12482 CVE-2019-12483 Three issues have been found for gpac, an Open Source multimedia framework. Two of them are NULL pointer dereferences and one of them is a heap-based buffer overflow. For Debian 8 "Jessie",...

Debian: Security Advisory (DSA-4449-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-4449-1 : ffmpeg - security update

Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

GPAC gf_isom_box_del function has uaf vulnerability

GPAC is an open source multimedia framework. A uaf vulnerability exists in the GPAC gfisomboxdel function, which can be exploited by attackers to cause memory corruption...

Stack overflow vulnerability in GPAC gf_m2ts_get_adaptation_field function

GPAC is an open source multimedia framework. A stack overflow vulnerability exists in the GPAC gfm2tsgetadaptationfield function, which can be exploited by an attacker to cause a denial of service...

Debian DLA-1765-1 : gpac security update

Several issues have been found for gpac, an Open Source multimedia framework. Using crafted files one can trigger buffer overflow issues that could be used to crash the application. For Debian 8 'Jessie', these problems have been fixed in version 0.5.0+svn5324dfsg1-1+deb8u3. We recommend that you...

DEBIAN-CVE-2019-11338

libavcodec/hevcdec.c in FFmpeg 3.4 and 4.1.2 mishandles detection of duplicate first slices, which allows remote attackers to cause a denial of service NULL pointer dereference and out-of-array access or possibly have unspecified other impact via crafted HEVC data...

[SECURITY] [DLA 1693-1] gpac security update

Package : gpac Version : 0.5.0+svn5324dfsg1-1+deb8u2 CVE ID : CVE-2018-7752 CVE-2018-20760 CVE-2018-20761 CVE-2018-20762 CVE-2018-20763 Several issues have been found by different authors in gpac, an Open Source multimedia framework for research and academic purposes. The issues are basically all...

The vulnerability of the handle_eac3 function in the framework for working with FFmpeg formats allows a attacker to cause a service failure or execute arbitrary code.

The vulnerability of the handleeac3 function “libavformat/movenc.c” in the FFmpeg multimedia processing framework is related to incorrect handling of frame types all types except EAC3FRAMETYPEINDEPENDENT. These types involve multiple independent streams, which can allow access beyond the permitte...

DEBIAN-CVE-2018-14394

libavformat/movenc.c in FFmpeg before 4.0.2 allows attackers to cause a denial of service application crash caused by a divide-by-zero error with a user crafted Waveform audio file...

DEBIAN-CVE-2018-14395

libavformat/movenc.c in FFmpeg 3.2 and 4.0.2 allows attackers to cause a denial of service application crash caused by a divide-by-zero error with a user crafted audio file when converting to the MOV audio format...

Debian DSA-4249-1 : ffmpeg - security update

Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

[SECURITY] [DSA 4249-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4249-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 17, 2018 https://www.debian.org/security/faq -...

Ffmpeg Denial of Service Vulnerability (CNVD-2018-08543)

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in the 'svgprobe' function in the libavformat/img2dec.c file in FFmpeg 3.4.2 and earlier versions. A remote attacker can exploit this vulnerability to cause ...

Debian: Security Advisory (DSA-4099-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 4049-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4049-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 27, 2017 https://www.debian.org/security/faq -...