Mandriva Linux Security Advisory : blender (MDVSA-2011:114)

Multiple vulnerabilities have been identified and fixed in blender : oggparsevorbis.c in FFmpeg 0.5 does not properly perform certain pointer arithmetic, which might allow remote attackers to obtain sensitive memory contents and cause a denial of service via a crafted file that triggers an...

Mandriva Update for mplayer MDVSA-2011:089 (mplayer)

Check for the Version of mplayer OpenVAS Vulnerability Test Mandriva Update for mplayer MDVSA-2011:089 mplayer Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

Debian DSA-2165-1 : ffmpeg-debian - buffer overflow

Several vulnerabilities have been discovered in FFmpeg coders, which are used by MPlayer and other applications. - CVE-2010-3429 Cesar Bernardini and Felipe Andres Manzano reported an arbitrary offset dereference vulnerability in the libavcodec, in particular in the FLIC file format parser. A...

[SECURITY] [DSA 2165-1] ffmpeg-debian security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2165-1 [email protected] http://www.debian.org/security/ Luciano Bello February 16, 2011 http://www.debian.org/security/faq -...

DSA-2165-1 ffmpeg-debian - buffer overflow

Bulletin has no description...

Google Chrome Multiple Vulnerabilities (Jan 2011) - Windows

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2010-4704

libavcodec/vorbisdec.c in the Vorbis decoder in FFmpeg 0.6.1 and earlier allows remote attackers to cause a denial of service application crash via a crafted .ogg file, related to the vorbisfloor0decode function. NOTE: this might overlap CVE-2011-0480...

CVE-2010-4704

libavcodec/vorbisdec.c in the Vorbis decoder in FFmpeg 0.6.1 and earlier allows remote attackers to cause a denial of service application crash via a crafted .ogg file, related to the vorbisfloor0decode function. NOTE: this might overlap CVE-2011-0480...

CVE-2010-4705

Integer overflow in the vorbisresiduedecodeinternal function in libavcodec/vorbisdec.c in the Vorbis decoder in FFmpeg, possibly 0.6, has unspecified impact and remote attack vectors, related to the sizes of certain integer data types. NOTE: this might overlap CVE-2011-0480...

CVE-2010-4705

Integer overflow in the vorbisresiduedecodeinternal function in libavcodec/vorbisdec.c in the Vorbis decoder in FFmpeg, possibly 0.6, has unspecified impact and remote attack vectors, related to the sizes of certain integer data types. NOTE: this might overlap CVE-2011-0480...

Integer overflow

Integer overflow in the vorbisresiduedecodeinternal function in libavcodec/vorbisdec.c in the Vorbis decoder in FFmpeg, possibly 0.6, has unspecified impact and remote attack vectors, related to the sizes of certain integer data types. NOTE: this might overlap CVE-2011-0480...

Design/Logic Flaw

libavcodec/vorbisdec.c in the Vorbis decoder in FFmpeg 0.6.1 and earlier allows remote attackers to cause a denial of service application crash via a crafted .ogg file, related to the vorbisfloor0decode function. NOTE: this might overlap CVE-2011-0480...

CVE-2010-4705

Integer overflow in the vorbisresiduedecodeinternal function in libavcodec/vorbisdec.c in the Vorbis decoder in FFmpeg, possibly 0.6, has unspecified impact and remote attack vectors, related to the sizes of certain integer data types. NOTE: this might overlap CVE-2011-0480...

CVE-2010-4705

CVE-2010-4705 is described as an integer overflow in the Vorbis decoder of FFmpeg (function vorbis_residue_decode_internal in libavcodec/vorbis_dec.c), with unspecified impact. The CVE may overlap CVE-2011-0480. Debian/OpenVAS entries group this with FFmpeg vulnerabilities and indicate a fix was ...

CVE-2010-4704

CVE-2010-4704 affects FFmpeg prior to 0.6.1, specifically the Vorbis decoder (libavcodec/vorbis_dec.c). A crafted .ogg file can trigger a denial-of-service (application crash) due to issues in vorbis_floor0_decode. Exploitation is remote and requires no user interaction. The issue is documented a...

CVE-2010-4704

libavcodec/vorbisdec.c in the Vorbis decoder in FFmpeg 0.6.1 and earlier allows remote attackers to cause a denial of service application crash via a crafted .ogg file, related to the vorbisfloor0decode function. NOTE: this might overlap CVE-2011-0480...

CVE-2010-4705

Integer overflow in the vorbisresiduedecodeinternal function in libavcodec/vorbisdec.c in the Vorbis decoder in FFmpeg, possibly 0.6, has unspecified impact and remote attack vectors, related to the sizes of certain integer data types. NOTE: this might overlap CVE-2011-0480...

CVE-2010-4704

libavcodec/vorbisdec.c in the Vorbis decoder in FFmpeg 0.6.1 and earlier allows remote attackers to cause a denial of service application crash via a crafted .ogg file, related to the vorbisfloor0decode function. NOTE: this might overlap CVE-2011-0480...

CVE-2011-0480

Multiple buffer overflows in vorbisdec.c in the Vorbis decoder in FFmpeg, as used in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344, allow remote attackers to cause a denial of service memory corruption and application crash or possibly have unspecified other impact via a craft...

DEBIAN-CVE-2011-0480

Multiple buffer overflows in vorbisdec.c in the Vorbis decoder in FFmpeg, as used in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344, allow remote attackers to cause a denial of service memory corruption and application crash or possibly have unspecified other impact via a craft...