3024 matches found
SUSE CVE-2017-12143
In libquicktime 1.2.4, an allocation failure was found in the function quicktimereadinfo in lqtquicktime.c, which allows attackers to cause a denial of service via a crafted file...
SUSE CVE-2017-18238
An issue was discovered in Exempi before 2.4.4. The TradQTManager::ParseCachedBoxes function in XMPFiles/source/FormatSupport/QuickTimeSupport.cpp allows remote attackers to cause a denial of service infinite loop via crafted XMP data in a .qt file...
SUSE CVE-2018-5815
An integer overflow error within the "parseqt" function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.12 can be exploited to trigger an infinite loop via a specially crafted Apple QuickTime file...
SUSE CVE-2022-3964
A vulnerability classified as problematic has been found in ffmpeg. This affects an unknown part of the file libavcodec/rpzaenc.c of the component QuickTime RPZA Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. It is possible to initiate the attack remotely. The...
SUSE CVE-2022-3965
A vulnerability classified as problematic was found in ffmpeg. This vulnerability affects the function smcencodestream of the file libavcodec/smcenc.c of the component QuickTime Graphics Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. The attack can be initiated...
SUSE SLED15 / SLES15 Security Update : ffmpeg-4 (SUSE-SU-2022:4194-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:4194-1 advisory. - A vulnerability classified as problematic has been found in ffmpeg. This affects an unknown part of the file...
OESA-2022-2101 exiv2 security update
Exiv2 is a Cross-platform C++ library and a command line utility to manage image metadata.It provides fast and easy read and write access to the Exif, IPTC and XMP metadata and the ICC Profile embedded within digital images in various formats. Security Fixes: A vulnerability was found in Exiv2 an...
Denial Of Service (DoS)
libexiv2.so is vulnerable to denial of service.The vulnerability exists in QuickTimeVideo::multipleEntriesDecoder function of quicktimevideo.cpp due to an infinite loop in the Quicktime Video Handler which allows an attacker to crash the application via malicious input...
FFmpeg has unspecified vulnerabilities (CNVD-2022-77504)
FFmpeg, the FFmpeg team's complete solution for recording, converting, and streaming audio and video, suffers from a security vulnerability stemming from an unknown function in the file ibavcodec/rpzaenc.c of the QuickTime RPZA Video Encoder component, which could be exploited by an attacker to...
Unspecified Vulnerability in FFmpeg (CNVD-2022-78137)
FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in FFmpeg, which originates from an unknown function in the file ibavcodec/rpzaenc.c of the QuickTime RPZA Video Encoder component, which can be exploited by...
DEBIAN-CVE-2022-3965
A vulnerability classified as problematic was found in ffmpeg. This vulnerability affects the function smcencodestream of the file libavcodec/smcenc.c of the component QuickTime Graphics Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. The attack can be initiated...
CVE-2022-3965
A vulnerability classified as problematic was found in ffmpeg. This vulnerability affects the function smcencodestream of the file libavcodec/smcenc.c of the component QuickTime Graphics Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. The attack can be initiated...
CVE-2022-3965
A vulnerability classified as problematic was found in ffmpeg. This vulnerability affects the function smcencodestream of the file libavcodec/smcenc.c of the component QuickTime Graphics Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. The attack can be initiated...
CVE-2022-3964
A vulnerability classified as problematic has been found in ffmpeg. This affects an unknown part of the file libavcodec/rpzaenc.c of the component QuickTime RPZA Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. It is possible to initiate the attack remotely. The...
DEBIAN-CVE-2022-3964
A vulnerability classified as problematic has been found in ffmpeg. This affects an unknown part of the file libavcodec/rpzaenc.c of the component QuickTime RPZA Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. It is possible to initiate the attack remotely. The...
CVE-2022-3964
A vulnerability classified as problematic has been found in ffmpeg. This affects an unknown part of the file libavcodec/rpzaenc.c of the component QuickTime RPZA Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. It is possible to initiate the attack remotely. The...
Type confusion
A vulnerability classified as problematic has been found in ffmpeg. This affects an unknown part of the file libavcodec/rpzaenc.c of the component QuickTime RPZA Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. It is possible to initiate the attack remotely. The...
Design/Logic Flaw
A vulnerability classified as problematic was found in ffmpeg. This vulnerability affects the function smcencodestream of the file libavcodec/smcenc.c of the component QuickTime Graphics Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. The attack can be initiated...
CVE-2022-3965
A vulnerability classified as problematic was found in ffmpeg. This vulnerability affects the function smcencodestream of the file libavcodec/smcenc.c of the component QuickTime Graphics Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. The attack can be initiated...
UBUNTU-CVE-2022-3964
A vulnerability classified as problematic has been found in ffmpeg. This affects an unknown part of the file libavcodec/rpzaenc.c of the component QuickTime RPZA Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. It is possible to initiate the attack remotely. The...