PT-2017-1249 · Adobe +3 · Flash Player +3

Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions 24.0.0.194 and earlier Description: The issue is related to a heap overflow vulnerability in the Flash Video FLV codec. This vulnerability could be exploited to achieve arbitrary code execution. The vulnerability i...

CVE-2016-3829

The ih264d decoder in mediaserver in Android 6.x before 2016-08-01 does not initialize certain structure members, which allows remote attackers to cause a denial of service device hang or reboot via a crafted media file, aka internal bug 29023649...

The vulnerability of the Android operating system, which allows a perpetrator to obtain confidential information

The vulnerability of MediaTek’s Android video codec relates to the lack of protection for service data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to obtain confidential information through a specially created application...

CVE-2016-3812

The MediaTek video codec driver in Android before 2016-07-05 on Android One devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28174833 and MediaTek internal bug ALPS02688832...

CVE-2016-3812

The MediaTek video codec driver in Android before 2016-07-05 on Android One devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28174833 and MediaTek internal bug ALPS02688832...

Design/Logic Flaw

The MediaTek video codec driver in Android before 2016-07-05 on Android One devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28174833 and MediaTek internal bug ALPS02688832...

UBUNTU-CVE-2016-3812

The MediaTek video codec driver in Android before 2016-07-05 on Android One devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28174833 and MediaTek internal bug ALPS02688832...

CVE-2016-3812

CVE-2016-3812 describes an information-disclosure vulnerability in the MediaTek video codec driver on Android One devices, prior to 2016-07-05. A crafted app could cause data leakage to the attacker via the MediaTek/Android pipeline (Android internal bug 28174833 and MediaTek internal bug ALPS026...

Android MediaTek Video Codec Driver Information Disclosure Vulnerability

Android on Android One is a Linux-based open source operating system for Android One smartphone developed by Google and the Open Handset Alliance OHA in the U.S. MediaTek video codec driver is one of the video codec driver components developed by MediaTek. MediaTek video codec driver is a video...

openSUSE Security Update : MozillaFirefox / mozilla-nss (openSUSE-2016-704)

This update to Mozilla Firefox 47 fixes the following issues boo983549 : Security fixes : - CVE-2016-2815/CVE-2016-2818: Miscellaneous memory safety hazards boo983638 MFSA 2016-49 - CVE-2016-2819: Buffer overflow parsing HTML5 fragments boo983655 MFSA 2016-50 - CVE-2016-2821: Use-after-free...

Security update for MozillaFirefox, mozilla-nss (important)

This update to Mozilla Firefox 47 fixes the following issues boo983549: Security fixes: - CVE-2016-2815/CVE-2016-2818: Miscellaneous memory safety hazards boo983638 MFSA 2016-49 - CVE-2016-2819: Buffer overflow parsing HTML5 fragments boo983655 MFSA 2016-50 - CVE-2016-2821: Use-after-free deletin...

The vulnerability of the Android operating system, which allows a hacker to trigger a service failure

The vulnerability of Qualcomm’s hardware video codec in the Android operating system exists due to insufficient checking of input data. Exploiting this vulnerability can allow a malicious actor to trigger a service failure device reboot using a specially crafted file...

CVE-2016-2454

The Qualcomm hardware video codec in Android before 2016-05-01 on Nexus 5 devices allows remote attackers to cause a denial of service reboot via a crafted file, aka internal bug 26221024...

CVE-2016-2454

The Qualcomm hardware video codec in Android before 2016-05-01 on Nexus 5 devices allows remote attackers to cause a denial of service reboot via a crafted file, aka internal bug 26221024...

CVE-2016-2454

The Qualcomm hardware video codec in Android before 2016-05-01 on Nexus 5 devices allows remote attackers to cause a denial of service reboot via a crafted file, aka internal bug 26221024...

UBUNTU-CVE-2016-2454

The Qualcomm hardware video codec in Android before 2016-05-01 on Nexus 5 devices allows remote attackers to cause a denial of service reboot via a crafted file, aka internal bug 26221024...

UBUNTU-CVE-2016-2451

codecs/on2/dec/SoftVPX.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 does not validate VPX output buffer sizes, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining...

CVE-2016-2454

The CVE-2016-2454 entry describes a denial-of-service vulnerability in the Qualcomm hardware video codec used by Android on Nexus 5 devices prior to 2016-05-01. A crafted media/file could trigger memory corruption in the mediaserver path and cause the device to reboot, allowing remote attackers t...

CVE-2016-2454

The Qualcomm hardware video codec in Android before 2016-05-01 on Nexus 5 devices allows remote attackers to cause a denial of service reboot via a crafted file, aka internal bug 26221024...

The vulnerability of the Android operating system allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the H.264 decoder in the libstagefright library of the Android operating system exists due to incorrect processing of the Memory Management Control Operation MMCO data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure...