203 matches found
Out-of-bounds
The fflog216bitc function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file...
CVE-2016-7450
The fflog216bitc function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file...
CVE-2016-7450
The fflog216bitc function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file...
DEBIAN-CVE-2016-7450
The fflog216bitc function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file...
UBUNTU-CVE-2016-7450
The fflog216bitc function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file...
CVE-2016-7450
The fflog216bitc function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file...
CVE-2016-7450
CVE-2016-7450 affects FFmpeg up to version 3.1.3. The vulnerable code path is the ff_log2_16bit_c function in libavutil/intmath.h, which can read out-of-bounds memory when decoding a malformed AIFF file. Impact per sources is an out-of-bounds read; exploitation details are not provided beyond thi...
CVE-2016-7450
The fflog216bitc function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file...
Information Disclosure
FFmpeg is vulnerable to information disclosures. A malicious user can cause the system to read out-of-bounds memory when decoding a malformed AIFF file...
Fedora 23 : libsndfile (2015-71b291686c)
The remote Fedora 23 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2015-71b291686c advisory. fix CVE-2015-7805 libsndfile: Heap overflow vulnerability when parsing specially crafted AIFF header Tenable has extracted the preceding description...
lib32-libsndfile: multiple issues
CVE-2014-9496 unspecified impact The sd2parsersrcfork function in sd2.c in lib32-libsndfile allows attackers to have unspecified impact via vectors related to a 1 map offset or 2 rsrc marker, which triggers an out-of-bounds read. - CVE-2014-9756 denial of service The psffwrite function in...
Ubuntu 14.04 LTS : libsndfile vulnerabilities (USN-2832-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2832-1 advisory. It was discovered that libsndfile incorrectly handled memory when parsing malformed files. A remote attacker could use this issue to cause libsndfile to...
[SECURITY] [DLA 356-1] libsndfile security update
Package : libsndfile Version : 1.0.21-3+squeeze2 CVE ID : CVE-2014-9496 CVE-2014-9756 CVE-2015-7805 Debian Bug : 774162 804445 804447 CVE-2014-9496 The sd2parsersrcfork function in sd2.c in libsndfile allows attackers to have unspecified impact via vectors related to a 1 map offset or 2 rsrc...
Mageia: Security Advisory (MGASA-2015-0455)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2015-0455 Updated libsndfile packages fix security vulnerability
Due to a heap overflow in libsndfile, a specially crafted AIFF header can manage index values in order to use memcpy to overwrite memory the heap CVE-2015-7805...
Updated libsndfile packages fix security vulnerability
Due to a heap overflow in libsndfile, a specially crafted AIFF header can manage index values in order to use memcpy to overwrite memory the heap CVE-2015-7805...
libsndfile heap buffer overflow vulnerability
libsndfile is a C library developed by software developer Erik de Castro Lopo that reads and writes audio files in AIFF, AU, and WAV formats through standard interfaces. A heap buffer overflow vulnerability exists in libsndfile version 1.0.25. A remote attacker can exploit the vulnerability by...
CVE-2015-7805
Heap-based buffer overflow in libsndfile 1.0.25 allows remote attackers to have unspecified impact via the headindex value in the header in an AIFF file...
DEBIAN-CVE-2015-7805
Heap-based buffer overflow in libsndfile 1.0.25 allows remote attackers to have unspecified impact via the headindex value in the header in an AIFF file...
CVE-2015-7805
Heap-based buffer overflow in libsndfile 1.0.25 allows remote attackers to have unspecified impact via the headindex value in the header in an AIFF file...