984 matches found
CVE-2025-43349
CVE-2025-43349 describes an out-of-bounds write in media processing that may cause an app to terminate when handling a malicious video file. The Apple security content lists affected components (e.g., CoreMedia and CoreAudio entries) and notes that the issue is fixed by updating to newer OS relea...
Linux Distros Unpatched Vulnerability : CVE-2017-7208
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The decoderesidual function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service buffer over-read or obtain sensitive information fr...
Linux Distros Unpatched Vulnerability : CVE-2017-14259
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the SDK in Bento4 1.5.0-616, the AP4StscAtom class in Ap4StscAtom.cpp contains a Write Memory Access Violation vulnerability. It is possible to exploit this...
ROS-20250904-03
Vulnerability of OpenH264 library decoding functions is related to buffer overflow in dynamic memory. memory. Exploitation of the vulnerability could allow an attacker acting remotely to execute an arbitrary code by sending a specially generated video file. arbitrary code by sending a specially...
Linux Distros Unpatched Vulnerability : CVE-2019-20628
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a Use- After-Free vulnerability in gfm2tsprocesspmt in...
Linux Distros Unpatched Vulnerability : CVE-2019-20632
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid pointer dereference in gfodfdeletedescriptor in...
Linux Distros Unpatched Vulnerability : CVE-2023-44446
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GStreamer MXF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected...
Linux Distros Unpatched Vulnerability : CVE-2021-40592
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GPAC version before commit 71460d72ec07df766dab0a4d52687529f3efcf0a version v1.0.1 onwards contains loop with unreachable exit condition 'infinite loop'...
Linux Distros Unpatched Vulnerability : CVE-2019-14970
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in mkv::eventthreadt in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer overflow via a crafted .mkv fil...
Linux Distros Unpatched Vulnerability : CVE-2018-13302
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In FFmpeg 4.0.1, improper handling of frame types other than EAC3FRAMETYPEINDEPENDENT that have multiple independent substreams in the handleeac3 function in...
Linux Distros Unpatched Vulnerability : CVE-2017-2907
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c. A specially created...
Linux Distros Unpatched Vulnerability : CVE-2017-2906
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c. A specially created...
Linux Distros Unpatched Vulnerability : CVE-2018-13301
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In FFmpeg 4.0.1, due to a missing check of a profile value before setting it, the ffmpeg4decodepictureheader function in libavcodec/mpeg4videodec.c may trigger ...
Linux Distros Unpatched Vulnerability : CVE-2025-47183
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GStreamer through 1.26.1, the isomp4 plugin's qtdemuxparsetree function may read past the end of a heap buffer while parsing an MP4 file, leading to...
Linux Distros Unpatched Vulnerability : CVE-2018-6132
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Uninitialized data in WebRTC in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to obtain potentially sensitive information from process memory vi...
TencentOS Server 2: nginx (TSSA-2025:0525)
The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0525 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities...
Linux Distros Unpatched Vulnerability : CVE-2018-6156
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorect derivation of a packet length in WebRTC in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to potentially exploit heap corruption via a...
DEBIAN-CVE-2025-47219
In GStreamer through 1.26.1, the isomp4 plugin's qtdemuxparsetrak function may read past the end of a heap buffer while parsing an MP4 file, possibly leading to information disclosure...
Out-of-bounds Read
Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the qtdemuxparsetree function when parsing certain MP4 files. An attacker can access sensitive information by crafting a malicious MP4 file that triggers a read past the end of a heap buffer. Remediation Upgrade...
SUSE CVE-2025-8584
A vulnerability classified as problematic was found in libav up to 12.3. Affected by this vulnerability is the function avbufferunref of the file libavutil/buffer.c of the component AVI File Parser. The manipulation leads to null pointer dereference. Local access is required to approach this...