214 matches found
Vulnerabilities of the Android operating system that allow a hacker to execute arbitrary code
The multiple vulnerabilities in the libstagefright library of the Android operating system are caused by buffer overflows. Exploitation of these vulnerabilities could allow a malicious actor to execute arbitrary code using specially crafted MP4 data...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability of the MPEG4Extractor::parseChunk function in the libstagefright library of the Android operating system is due to a loss of integer precision. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using specially crafted MPEG-4 format data...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability of the SampleTable::setSampleToChunkParams function in the libstagefright library of the Android operating system is related to integer overflow. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using specially crafted MP4 data...
FFmpeg ff_mpv_common_init Denial of Service Vulnerability
FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in the 'ffmpvcommoninit' function in the libavcodec/mpegvideo.c file in versions of FFmpeg prior to 2.7.2, which arises from a failure of the program to...
CVE-2015-6824
The swsinitcontext function in libswscale/utils.c in FFmpeg before 2.7.2 does not initialize certain pixbuf data structures, which allows remote attackers to cause a denial of service segmentation violation or possibly have unspecified other impact via crafted video data...
DEBIAN-CVE-2015-6824
The swsinitcontext function in libswscale/utils.c in FFmpeg before 2.7.2 does not initialize certain pixbuf data structures, which allows remote attackers to cause a denial of service segmentation violation or possibly have unspecified other impact via crafted video data...
CVE-2015-6822
The destroybuffers function in libavcodec/sanm.c in FFmpeg before 2.7.2 does not properly maintain height and width values in the video context, which allows remote attackers to cause a denial of service segmentation violation and application crash or possibly have unspecified other impact via...
CVE-2015-6822
The destroybuffers function in libavcodec/sanm.c in FFmpeg before 2.7.2 does not properly maintain height and width values in the video context, which allows remote attackers to cause a denial of service segmentation violation and application crash or possibly have unspecified other impact via...
Design/Logic Flaw
The swsinitcontext function in libswscale/utils.c in FFmpeg before 2.7.2 does not initialize certain pixbuf data structures, which allows remote attackers to cause a denial of service segmentation violation or possibly have unspecified other impact via crafted video data...
CVE-2015-6824
The swsinitcontext function in libswscale/utils.c in FFmpeg before 2.7.2 does not initialize certain pixbuf data structures, which allows remote attackers to cause a denial of service segmentation violation or possibly have unspecified other impact via crafted video data...
CVE-2015-6824
CVE-2015-6824 affects FFmpeg’s libswscale component (function sws_init_context in libswscale/utils.c). The vulnerability stems from not initializing certain pixbuf data structures, which can enable a remote attacker to trigger a denial of service (segmentation fault) or potentially other effects ...
CVE-2015-6822
The destroybuffers function in libavcodec/sanm.c in FFmpeg before 2.7.2 does not properly maintain height and width values in the video context, which allows remote attackers to cause a denial of service segmentation violation and application crash or possibly have unspecified other impact via...
CVE-2015-6824
The swsinitcontext function in libswscale/utils.c in FFmpeg before 2.7.2 does not initialize certain pixbuf data structures, which allows remote attackers to cause a denial of service segmentation violation or possibly have unspecified other impact via crafted video data...
CVE-2015-6824
The swsinitcontext function in libswscale/utils.c in FFmpeg before 2.7.2 does not initialize certain pixbuf data structures, which allows remote attackers to cause a denial of service segmentation violation or possibly have unspecified other impact via crafted video data...
UBUNTU-CVE-2015-6824
The swsinitcontext function in libswscale/utils.c in FFmpeg before 2.7.2 does not initialize certain pixbuf data structures, which allows remote attackers to cause a denial of service segmentation violation or possibly have unspecified other impact via crafted video data...
ffmpeg -- multiple vulnerabilities
NVD reports: The decodeihdrchunk function in libavcodec/pngdec.c in FFmpeg before 2.7.2 does not enforce uniqueness of the IHDR aka image header chunk in a PNG image, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact vi...
CVE-2015-4486
The decreaserefcount function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds read via malformed WebM video data...
CVE-2015-4485
Heap-based buffer overflow in the resizecontextbuffers function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via malformed WebM video data...
CVE-2015-4480
Integer overflow in the stagefright::SampleTable::isValid function in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via crafted MPEG-4 video data with H.264 encoding...
CVE-2015-4479
Multiple integer overflows in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allow remote attackers to execute arbitrary code via a crafted saio chunk in MPEG-4 video data...