130 matches found
PT-2019-3467 · Freeware +1 · Faad2 +1
Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 version 2.8.8 Description: A buffer overflow issue affects the faad resetbits function in libfaad/bits.c. The number of bits to be read is determined by ld-buffer size - words4, cast to uint32. If...
UBUNTU-CVE-2014-10375
handlemessages in eXtltls.c in eXosip before 5.0.0 mishandles a negative value in a content-length header...
Information disclosure
In FFmpeg 4.0.1, due to a missing check for negative values of the mquant variable, the vc1putblocksclamped function in libavcodec/vc1block.c may trigger an out-of-array access while converting a crafted AVI file to MPEG4, leading to an information disclosure or a denial of service...
DEBIAN-CVE-2017-13704
In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value. As it is an unsigned value, memset ends up writing up to 0xffffffff zero's 0xffffffffffffffff in 64 bit platforms, making dnsmasq crash...
Buffer underrun vulnerability in Kernel.sprintf
There is a buffer underrun vulnerability in the sprintf method of Kernel module. If a malicious format string which contains a precious specifier is passed and a huge minus value is also passed to the specifier, buffer underrun may be caused. In such situation, the result may contains heap, or th...
CVE-2016-9825
libswscale/utils.c in libav 11.8 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
CVE-2017-5502
libjasper/jp2/jp2dec.c in JasPer 1.900.17 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
Code injection
libavcodec/ituh263dec.c in libav 11.8 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
CVE-2016-9825
libswscale/utils.c in libav 11.8 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
CVE-2016-9820
libavcodec/mpegvideomotion.c in libav 11.8 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
CVE-2016-9820
libavcodec/mpegvideomotion.c in libav 11.8 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
CVE-2016-9819
libavcodec/mpegvideo.c in libav 11.8 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
Input validation
libjasper/include/jasper/jasmath.h in JasPer 1.900.17 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
CVE-2017-5498
libjasper/include/jasper/jasmath.h in JasPer 1.900.17 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
CVE-2016-9826
libavcodec/ituh263dec.c in libav 11.8 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
CVE-2017-5500
libjasper/jpc/jpcdec.c in JasPer 1.900.17 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
UBUNTU-CVE-2017-5500
libjasper/jpc/jpcdec.c in JasPer 1.900.17 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
UBUNTU-CVE-2017-5502
libjasper/jp2/jp2dec.c in JasPer 1.900.17 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
UBUNTU-CVE-2017-5498
libjasper/include/jasper/jasmath.h in JasPer 1.900.17 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
UBUNTU-CVE-2016-9819
libavcodec/mpegvideo.c in libav 11.8 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...