The vulnerability of Adobe Premiere Rush software, related to insufficient validation of input data, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of Adobe Premiere Rush is related to insufficient validation of input data during the MP4 file syntax analysis. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

CVE-2021-44697

Adobe Audition versions 14.4 and earlier, and 22.0 and earlierare affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interacti...

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in its insufficient validation of input data, allowing attackers to execute arbitrary code.

The vulnerability of Adobe After Effects software for video and dynamic image editing exists due to insufficient testing of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created MP4 file...

The vulnerability of the Adobe Media Encoder application, which exists due to insufficient validation of input data, allows a perpetrator to execute arbitrary code.

The vulnerability of the Adobe Media Encoder application exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created MP4 file from a remote location...

CVE-2017-5050

An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer...

CVE-2017-5048

An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer...

CVE-2017-5049

An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer...

CVE-2017-5047

An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer...

CVE-2021-21849

An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an integer overflow when the library encounters an atom using the “tfra” FOURCC code due to unchecked...

CVE-2021-21840

An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input used to process an atom using the “saio” FOURCC code cause an integer overflow due to unchecked arithmetic resulti...

CVE-2021-21842

An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an integer overflow when processing an atom using the 'ssix' FOURCC code, due to unchecked arithmetic...

Integer overflow

An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an integer overflow when processing an atom using the 'ssix' FOURCC code, due to unchecked arithmetic...

CVE-2021-21836

CVE-2021-21836 concerns the GPAC Project on Advanced Content library (GPAC) v1.0.1. The vulnerability is a heap-based buffer overflow triggered by an exploitable integer overflow in the MPEG-4 decoding path when processing the ctts atom/FOURCC, due to unchecked arithmetic. This can lead to memory...

CVE-2021-21839

Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an integer overflow due to unchecked arithmetic resulting in a heap-based buffer overflow that...

CVE-2021-21845

Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input in “stsc” decoder can cause an integer overflow due to unchecked arithmetic resulting in a heap-based buffe...

CVE-2021-21843

CVE-2021-21843 affects GPAC Project on Advanced Content library 1.0.1 (MPEG-4 decoding). A 32‑bit integer overflow in the integer handling during decoding (after validating range counts) can cause heap-based buffer overflow and memory corruption. An attacker can entice a user to open a crafted MP...

FFmpeg 资源管理错误漏洞

FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video, and convert them to streams under the LGPL or GPL license. mpegmuxwritepacket function in libavformat/mpegenc.c in FFmpeg version 4.2 suffers from a heap-release post-reuse vulnerability...

DEBIAN-CVE-2021-25801

A buffer overflow vulnerability in the Parseindx component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file...

UBUNTU-CVE-2021-25802

A buffer overflow vulnerability in the AVIExtractSubtitle component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file...

GPAC 缓冲区错误漏洞

GPAC is an open source multimedia framework. versions prior to GPAC 0.8.0 have security vulnerabilities that can be exploited by attackers to cause a denial of service via a crafted MP4 file...