20 matches found
CVE-2026-40918
A flaw was found in GIMP. Processing a specially crafted PVR image file with large dimensions can lead to a denial of service DoS. This occurs due to a stack-based buffer overflow and an out-of-bounds read in the PVR image loader, causing the application to crash. Systems that process untrusted P...
Linux Distros Unpatched Vulnerability : CVE-2023-44446
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GStreamer MXF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected...
Linux Distros Unpatched Vulnerability : CVE-2025-47183
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GStreamer through 1.26.1, the isomp4 plugin's qtdemuxparsetree function may read past the end of a heap buffer while parsing an MP4 file, leading to...
USN-7490-3 libsoup3 vulnerabilities
USN-7490-1 fixed vulnerabilities in libsoup2.4. This update provides the corresponding updates for libsoup3. Original advisory details: Tan Wei Chong discovered that libsoup incorrectly handled memory when parsing HTTP request headers. An attacker could possibly use this issue to send a malicious...
USN-7490-1: libsoup vulnerabilities
Tan Wei Chong discovered that libsoup incorrectly handled memory when parsing HTTP request headers. An attacker could possibly use this issue to send a maliciously crafted HTTP request to the server, causing a denial of service. CVE-2025-32906 Alon Zahavi discovered that libsoup incorrectly parse...
CVE-2022-22059
Memory corruption due to out of bound read while parsing a video file in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...
CVE-2024-44233
The issue was addressed with improved bounds checks. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, iOS 18.1 and iPadOS 18.1, macOS Sequoia 15.1, macOS Sonoma 14.7.1, macOS Ventura 13.7.1, tvOS 18.1, visionOS 2.1, watchOS 11.1. Parsing a maliciously crafted video file may lead to unexpected...
PT-2024-6186 · Adobe · After Effects
Name of the Vulnerable Software and Affected Versions: Adobe After Effects versions 23.6.6, 24.5 and earlier Description: The issue is related to an out-of-bounds write vulnerability in Adobe After Effects, which could result in arbitrary code execution in the context of the current user...
PT-2024-8044 · Adobe · Bridge
Name of the Vulnerable Software and Affected Versions: Adobe Bridge versions 13.0.8, 14.1.1 and earlier Description: The issue is caused by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires us...
PT-2024-2182 · Adobe · Premiere Pro
Name of the Vulnerable Software and Affected Versions: Adobe Premiere Pro versions 24.1, 23.6.2 and earlier Description: The issue is related to a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue...
PT-2023-7136 · Adobe · Audition
Name of the Vulnerable Software and Affected Versions: Adobe Audition versions 24.0 and earlier Adobe Audition versions 23.6.1 and earlier Description: The issue is related to an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this...
SUSE-SU-2023:4360-1 Security update for gstreamer-plugins-bad
This update for gstreamer-plugins-bad fixes the following issues: - CVE-2023-40474: Fixed a remote code execution issue due to improper parsing of H265 encoded video files bsc1215793...
CVE-2022-42846
The issue was addressed with improved memory handling. This issue is fixed in iOS 16.2 and iPadOS 16.2, iOS 15.7.2 and iPadOS 15.7.2. Parsing a maliciously crafted video file may lead to unexpected system termination...
CVE-2022-46694
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 16.2 and iPadOS 16.2, iOS 15.7.2 and iPadOS 15.7.2, tvOS 16.2, watchOS 9.2. Parsing a maliciously crafted video file may lead to kernel code execution...
PT-2022-17455 · Qualcomm · Snapdragon Wearables +5
Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon versions affected versions not specified Description: The issue is related to information disclosure in video due to a buffer over-read while parsing avi files. This affects various Qualcomm Snapdragon products, including...
CVE-2022-22059
Memory corruption due to out of bound read while parsing a video file in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...
Memory corruption
Memory corruption due to out of bound read while parsing a video file in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...
GStreamer 输入验证错误漏洞
GStreamer is a set of frameworks for processing streaming media. A security vulnerability exists in GStreamer version 1.16.2, which is caused by an integer overflow in the avidemux element of the gstavidemuxinvert function, which allows heap overwriting when parsing avi files, and can be exploite...
Memory Corruption Vulnerability Exists in Video Pioneer PC (CNVD-2017-34296)
Video Pioneer is a software that can play video and audio online based on P2P Cloud 3D technology, supporting multiple streaming protocols, multiple audio and video formats. A memory corruption vulnerability exists in the Pioneer player when parsing special mp4 files. An attacker can exploit this...
Flash Player/Plugin Video file parsing Remote Code Execution POC
No description provided by source. Author:yunshu http://www.ph4nt0m.org poc: http://www.milw0rm.com/sploits/07162007-flashflv9.0.45.0exp.zip sebug.net...