About the security content of macOS Sequoia 15

About the security content of macOS Sequoia 15 This document describes the security content of macOS Sequoia 15. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...

About the security content of macOS Sonoma 14.7

About the security content of macOS Sonoma 14.7 This document describes the security content of macOS Sonoma 14.7. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases ar...

The vulnerability of the `mc_chroma` function in the `motion.cc` component of the h.265 Libde265 video codec implementation, related to writing beyond buffer boundaries, allows a hacker to cause a service failure.

The vulnerability of the mcchroma function in the motion.cc component of the H.265 Libde265 video codec implementation is related to writing beyond buffer boundaries. Exploiting this vulnerability can allow a malicious actor to cause service failures using a specially created video file...

PT-2024-6186 · Adobe · After Effects

Name of the Vulnerable Software and Affected Versions: Adobe After Effects versions 23.6.6, 24.5 and earlier Description: The issue is related to an out-of-bounds write vulnerability in Adobe After Effects, which could result in arbitrary code execution in the context of the current user...

PT-2024-8044 · Adobe · Bridge

Name of the Vulnerable Software and Affected Versions: Adobe Bridge versions 13.0.8, 14.1.1 and earlier Description: The issue is caused by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires us...

CVE-2024-27873

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8. Processing a maliciously crafted video file may lead to unexpected app...

CVE-2024-27873

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8. Processing a maliciously crafted video file may lead to unexpected app...

CVE-2024-27873

CVE-2024-27873 is an out-of-bounds write vulnerability in Apple software where processing a maliciously crafted video file may cause an app to terminate. The vulnerability is addressed by input validation improvements and is fixed in multiple Apple OS updates: iOS 16.7.9 and iPadOS 16.7.9, macOS ...

CVE-2024-39695

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 version v0.28.2. The vulnerability is in the parser for the ASF video format, which was a new feature in v0.28.0. The out-of-bounds...

RHEL 9 : nginx (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - nginx: Memory corruption in the ngxhttpmp4module CVE-2022-41741 - Rejected reason: DO NOT USE THIS...

exiv2 -- Out-of-bounds read in AsfVideo::streamProperties

Kevin Backhouse reports: An out-of-bounds read was found in Exiv2 version v0.28.2. The vulnerability is in the parser for the ASF video format, which was a new feature in v0.28.0, so Exiv2 versions before v0.28 are not affected. The out-of-bounds read is triggered when Exiv2 is used to read the...

PT-2024-2182 · Adobe · Premiere Pro

Name of the Vulnerable Software and Affected Versions: Adobe Premiere Pro versions 24.1, 23.6.2 and earlier Description: The issue is related to a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue...

BIT-NGINX-2022-41741 NGINX ngx_http_mp4_module vulnerability CVE-2022-41741

NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngxhttpmp4module that might allow a local attacker to corrupt NGINX worker memory, resulting in...

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS : libde265 vulnerabilities (USN-6659-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6659-1 advisory. It was discovered that libde265 could be made to write out of bounds. If a user or automated system were tricked into...

The vulnerability of the ff_hevc_put_hevc_qpel_h_3_v_3_sse() function in the h.265 Libde265 video codec implementation allows a attacker to cause a service failure.

The vulnerability of the ffhevcputhevcqpelh3v3sse function in the h.265 Libde265 implementation is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure through the use of a specially created vid...

The vulnerability of the put_qpel_fallback() function in the h.265 Libde265 implementation allows a perpetrator to trigger a service failure.

The vulnerability of the putqpelfallback function in the h.265 Libde265 implementation is related to the issue where the operation’s output goes beyond the buffer in memory when processing the unsigned short data type. Exploiting this vulnerability can allow a malicious actor to cause service...

The vulnerability of the put_unweighted_pred_16_fallback() function in the h.265 Libde265 implementation allows a hacker to trigger a service failure.

The vulnerability of the putunweightedpred16fallback function in the h.265 Libde265 implementation is related to the output of the operation being stored in memory beyond the buffer boundaries. Exploiting this vulnerability could allow a malicious actor to trigger a service failure using a...

The vulnerability of the ff_hevc_put_hevc_epel_pixels_8_sse() function in the h.265 Libde265 implementation allows a attacker to cause a service failure.

The vulnerability of the ffhevcputhevcepelpixels8sse function in the h.265 Libde265 implementation is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow a remote attacker to cause a service failure through a specially created video file...

CVE-2024-25112

A flaw was found in the Exiv2 command-line utility. The denial of service is triggered when Exiv2 is used to read the metadata of a crafted video file. An unbounded recursion can cause Exiv2 to crash by exhausting the stack...

Denial Of Service (DoS)

ibexiv2.so is vulnerable to Denial of Service DoS. The vulnerability is due to the QuickTimeVideo::multipleEntriesDecode function, which triggers unbounded recursion when reading the metadata of a crafted video file, resulting in DoS...