250 matches found
SUSE CVE-2018-14451
An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in the function RIFF::Chunk::Read in RIFF.cpp...
SUSE CVE-2018-14454
An issue was discovered in libgig 4.1.0. There is an out-of-bounds read in the function RIFF::Chunk::Read in RIFF.cpp...
SUSE CVE-2018-18196
An issue was discovered in libgig 4.1.0. There is a heap-based buffer over-read in RIFF::List::GetListTypeString in RIFF.cpp...
SUSE CVE-2021-32294
An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution...
The vulnerability of the RIFF::List::GetSubList function in the RIFF.cpp component of the libgig processing library allows a perpetrator to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the RIFF::List::GetSubList function in the RIFF.cpp component of the file processing library libgig is related to writing beyond buffer boundaries. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause servic...
[SECURITY] Fedora 36 Update: libwebp-1.2.2-4.fc36
WebP is an image format that does lossy compression of digital photographic images. WebP consists of a codec based on VP8, and a container based on RIFF. Webmasters, web developers and browser developers can use WebP to compress, archive and distribute digital images more efficiently...
CVE-2021-32294
An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution...
DEBIAN-CVE-2021-32294
An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution...
Heap overflow
An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution...
UBUNTU-CVE-2021-32294
An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution...
CVE-2021-32294
CVE-2021-32294 affects libgig, with a heap-buffer-overflow in RIFF.cpp:RIFF::List::GetSubList leading to potential code execution. The issue is documented across multiple advisories (NVD, Debian, Red Hat, CNVD, OSV, CNVD variants) as existing up to 20200507. Public details describe the vulnerable...
libgig 缓冲区错误漏洞
libgig is a C library for loading, modifying existing and creating new Gigasampler .gig files and DLS downloadable sound level 1/2 files, instruments based on KORG samples .KSF and .KMP files, SoundFont v2 .sf2 files, and AKAI sampler data. libgig A heap buffer overflow vulnerability exists in th...
Important: Red Hat Security Advisory: libwebp security update
An update for libwebp is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
WordPress Core External Entity Injection (CVE-2021-29447)
An XXE vulnerability exists in WordPress Core. The vulnerability is due to insufficient validation of XML data when parsing RIFF WAV file metadata...
openSUSE Security Update : perl-Image-ExifTool (openSUSE-2021-707)
This update for perl-Image-ExifTool fixes the following issues : Update to version 12.25 fixes boo1185547 CVE-2021-22204 - JPEG XL support is now official - Added read support for Medical Research Council MRC image files - Added ability to write a number of 3gp tags in video files - Added a new...
Huawei EulerOS: Security Advisory for java-1.8.0-openjdk (EulerOS-SA-2018-1386)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Low: exempi
Issue Overview: An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp allows remote attackers to cause a denial of service infinite loop via crafted XMP data in a .avi file.CVE-2017-18233 An issue was discovered in Exempi...
exempi: Infinite Loop in Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp
An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp allows remote attackers to cause a denial of service infinite loop via crafted XMP data in a .avi file...
EulerOS 2.0 SP8 : java-1.8.0-openjdk (EulerOS-SA-2019-1777)
According to the version of the java-1.8.0-openjdk packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - OpenJDK: Infinite loop in RIFF format reader CVE-2018-3214 Note that Tenable Network Security has extracted the preceding description...
Fedora 28 : SDL (2019-918aad6bd5)
This release fixes a buffer overflow when processing RIFF/WAV files with in invalid MS ADPCM predictor. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as mu...