Lucene search
+L

250 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:25 a.m.4 views

SUSE CVE-2018-14451

An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in the function RIFF::Chunk::Read in RIFF.cpp...

8.8CVSS9AI score0.01142EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:25 a.m.4 views

SUSE CVE-2018-14454

An issue was discovered in libgig 4.1.0. There is an out-of-bounds read in the function RIFF::Chunk::Read in RIFF.cpp...

8.8CVSS8.7AI score0.01184EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:23 a.m.4 views

SUSE CVE-2018-18196

An issue was discovered in libgig 4.1.0. There is a heap-based buffer over-read in RIFF::List::GetListTypeString in RIFF.cpp...

8.8CVSS8.9AI score0.01185EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:41 a.m.2 views

SUSE CVE-2021-32294

An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution...

8.8CVSS8.5AI score0.01502EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2022/04/01 12:0 a.m.6 views

The vulnerability of the RIFF::List::GetSubList function in the RIFF.cpp component of the libgig processing library allows a perpetrator to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the RIFF::List::GetSubList function in the RIFF.cpp component of the file processing library libgig is related to writing beyond buffer boundaries. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause servic...

8.8CVSS7.7AI score0.01502EPSS
Exploits1References4Affected Software2
Fedora
Fedora
added 2022/03/26 3:34 p.m.12 views

[SECURITY] Fedora 36 Update: libwebp-1.2.2-4.fc36

WebP is an image format that does lossy compression of digital photographic images. WebP consists of a codec based on VP8, and a container based on RIFF. Webmasters, web developers and browser developers can use WebP to compress, archive and distribute digital images more efficiently...

3.4AI score
Exploits0
NVD
NVD
added 2021/09/20 4:15 p.m.18 views

CVE-2021-32294

An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution...

8.8CVSS0.01502EPSS
Exploits1References1
OSV
OSV
added 2021/09/20 4:15 p.m.2 views

DEBIAN-CVE-2021-32294

An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution...

8.8CVSS8AI score0.01502EPSS
Exploits1References1
Prion
Prion
added 2021/09/20 4:15 p.m.12 views

Heap overflow

An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution...

6.8CVSS8.6AI score0.01502EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2021/09/20 4:15 p.m.3 views

UBUNTU-CVE-2021-32294

An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution...

8.8CVSS5.8AI score0.01502EPSS
Exploits1References3
CVE
CVE
added 2021/09/20 3:26 p.m.59 views

CVE-2021-32294

CVE-2021-32294 affects libgig, with a heap-buffer-overflow in RIFF.cpp:RIFF::List::GetSubList leading to potential code execution. The issue is documented across multiple advisories (NVD, Debian, Red Hat, CNVD, OSV, CNVD variants) as existing up to 20200507. Public details describe the vulnerable...

8.8CVSS8.6AI score0.01502EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2021/09/20 12:0 a.m.5 views

libgig 缓冲区错误漏洞

libgig is a C library for loading, modifying existing and creating new Gigasampler .gig files and DLS downloadable sound level 1/2 files, instruments based on KORG samples .KSF and .KMP files, SoundFont v2 .sf2 files, and AKAI sampler data. libgig A heap buffer overflow vulnerability exists in th...

8.8CVSS8.2AI score0.01502EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2021/06/09 1:55 p.m.78 views

Important: Red Hat Security Advisory: libwebp security update

An update for libwebp is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.8CVSS7.1AI score0.02662EPSS
Exploits0References4
Check Point Advisories
Check Point Advisories
added 2021/06/01 12:0 a.m.26 views

WordPress Core External Entity Injection (CVE-2021-29447)

An XXE vulnerability exists in WordPress Core. The vulnerability is due to insufficient validation of XML data when parsing RIFF WAV file metadata...

4CVSS4.8AI score0.85719EPSS
Exploits20
Tenable Nessus
Tenable Nessus
added 2021/05/18 12:0 a.m.72 views

openSUSE Security Update : perl-Image-ExifTool (openSUSE-2021-707)

This update for perl-Image-ExifTool fixes the following issues : Update to version 12.25 fixes boo1185547 CVE-2021-22204 - JPEG XL support is now official - Added read support for Medical Research Council MRC image files - Added ability to write a number of 3gp tags in video files - Added a new...

7.8CVSS7.7AI score0.99981EPSS
Exploits39References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.46 views

Huawei EulerOS: Security Advisory for java-1.8.0-openjdk (EulerOS-SA-2018-1386)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.2AI score0.07215EPSS
Exploits2References2
Amazon
Amazon
added 2019/10/21 12:0 a.m.28 views

Low: exempi

Issue Overview: An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp allows remote attackers to cause a denial of service infinite loop via crafted XMP data in a .avi file.CVE-2017-18233 An issue was discovered in Exempi...

7.8CVSS6.8AI score0.01707EPSS
Exploits5
RedHat Linux
RedHat Linux
added 2019/08/06 1:56 p.m.7 views

exempi: Infinite Loop in Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp

An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp allows remote attackers to cause a denial of service infinite loop via crafted XMP data in a .avi file...

5.5CVSS5.9AI score0.01526EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2019/07/25 12:0 a.m.238 views

EulerOS 2.0 SP8 : java-1.8.0-openjdk (EulerOS-SA-2019-1777)

According to the version of the java-1.8.0-openjdk packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - OpenJDK: Infinite loop in RIFF format reader CVE-2018-3214 Note that Tenable Network Security has extracted the preceding description...

5.3CVSS6.3AI score0.07EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/03/21 12:0 a.m.31 views

Fedora 28 : SDL (2019-918aad6bd5)

This release fixes a buffer overflow when processing RIFF/WAV files with in invalid MS ADPCM predictor. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as mu...

8.8CVSS6.9AI score0.02992EPSS
Exploits1References2
Rows per page
Query Builder