Lucene search
K

13 matches found

RedHat Linux
RedHat Linux
added 2026/06/11 6:43 a.m.8 views

libsndfile: integer overflow in ima_reader_init()

A flaw was found in the libsndfile library. An integer overflow in the IMA ADPCM codec can occur when a specially crafted WAV audio file is processed, specifically with malicious samplesperblock and blocks values. This can lead to a heap-based buffer overflow, causing a crash to the application...

7.5CVSS5.6AI score0.00504EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/06/04 12:27 p.m.7 views

libsndfile: integer overflow in ima_reader_init()

A flaw was found in the libsndfile library. An integer overflow in the IMA ADPCM codec can occur when a specially crafted WAV audio file is processed, specifically with malicious samplesperblock and blocks values. This can lead to a heap-based buffer overflow, causing a crash to the application...

7.5CVSS5.9AI score0.00504EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/05/26 2:2 a.m.12 views

freerdp: FreeRDP has an out-of-bounds read in ADPCM decoders due to missing predictor/step_index bounds checks

An out of bounds read flaw has been discovered in FreeRDP. This out-of-bounds read exists in the MS-ADPCM and IMA-ADPCM decoders due to unchecked predictor and stepindex values from input data. An attacker may be able to leverage this weakness to leak global data...

9.4CVSS5.7AI score0.00263EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/05/20 7:46 p.m.10 views

freerdp: FreeRDP has a division-by-zero in ADPCM decoders when `nBlockAlign` is 0

A division by zero flaw has been discovered in FreeRDP. This division by zero exists in the MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % blocksize where blocksize = context-common.format.nBlockAlign. The...

7.5CVSS5.7AI score0.00303EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2026/05/12 11:31 p.m.12 views

freerdp: FreeRDP: Denial of Service via crafted audio data in RDP

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol RDP. A remote attacker can exploit a sizet underflow vulnerability in the IMA-ADPCM and MS-ADPCM audio decoders by sending specially crafted audio data over the RDPSND audio channel. This underflow leads to a...

9.8CVSS5.8AI score0.00317EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/05/12 11:31 p.m.13 views

freerdp: FreeRDP has an out-of-bounds read in ADPCM decoders due to missing predictor/step_index bounds checks

An out of bounds read flaw has been discovered in FreeRDP. This out-of-bounds read exists in the MS-ADPCM and IMA-ADPCM decoders due to unchecked predictor and stepindex values from input data. An attacker may be able to leverage this weakness to leak global data...

9.4CVSS5.7AI score0.00263EPSS
Exploits1References6
OSV
OSV
added 2026/04/29 4:16 p.m.6 views

UBUNTU-CVE-2026-37555

An issue was discovered in libsndfile 1.2.2 IMA ADPCM codec. The AIFF code path line 241 was fixed with sfcountt cast, but the WAV code path line 235 and close path line 167 were not. When samplesperblock int blocks int exceeds INTMAX, the 32-bit multiplication overflows before being assigned to...

8.2CVSS6AI score0.00504EPSS
Exploits1References3
AlpineLinux
AlpineLinux
added 2026/04/29 12:0 a.m.6 views

CVE-2026-37555

An issue was discovered in libsndfile 1.2.2 IMA ADPCM codec. The AIFF code path line 241 was fixed with sfcountt cast, but the WAV code path line 235 and close path line 167 were not. When samplesperblock int blocks int exceeds INTMAX, the 32-bit multiplication overflows before being assigned to...

8.2CVSS7.4AI score0.00504EPSS
Exploits2References20
OSV
OSV
added 2026/03/27 12:29 p.m.5 views

CLSA-2026-1774438942 freerdp: Fix of 3 CVEs

CVE-2026-29774: heap buffer overflow in H.264 AVC420/AVC444 YUV-to-RGB conversion - CVE-2026-31884: division by zero in ADPCM decoders when nBlockAlign is 0 - CVE-2026-29775: off-by-one in bitmapcacheput...

8.2CVSS6AI score0.00323EPSS
Exploits3References1
OSV
OSV
added 2026/03/13 7:54 p.m.5 views

UBUNTU-CVE-2026-31885

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in MS-ADPCM and IMA-ADPCM decoders due to unchecked predictor and stepindex values from input data. This vulnerability is fixed in 3.24.0...

9.4CVSS5.8AI score0.00263EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/03/13 5:38 p.m.29 views

CVE-2026-31885 FreeRDP has an out-of-bounds read in ADPCM decoders due to missing predictor/step_index bounds checks

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in MS-ADPCM and IMA-ADPCM decoders due to unchecked predictor and stepindex values from input data. This vulnerability is fixed in 3.24.0...

6.5CVSS0.00263EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/03/13 12:0 a.m.5 views

FreeRDP 缓冲区错误漏洞

FreeRDP is an open-source implementation of the Remote Desktop Protocol RDP by the FreeRDP team. Versions of FreeRDP prior to 3.24.0 contained a buffer error vulnerability. This vulnerability stemmed from the lack of checks on the predictor and stepindex values in the input data by the MS-ADPCM a...

9.4CVSS6AI score0.00263EPSS
Exploits1References3
Packet Storm News
Packet Storm News
added 2025/07/23 12:0 a.m.2 views

C-AAE: Compressively Anonymizing Autoencoders for Privacy-Preserving Activity Recognition in Healthcare Sensor Streams

Wearable accelerometers and gyroscopes encode fine-grained behavioural signatures that can be exploited to re-identify users, making privacy protection essential for healthcare applications. We introduce C-AAE, a compressive anonymizing autoencoder that marries an Anonymizing AutoEncoder AAE with...

6.7AI score
Exploits0
Rows per page
Query Builder