Lucene search
+L

203 matches found

Prion
Prion
added 2016/12/23 5:59 a.m.15 views

Out-of-bounds

The fflog216bitc function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file...

6.8CVSS6.8AI score0.01159EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2016/12/23 5:59 a.m.18 views

CVE-2016-7450

The fflog216bitc function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file...

7.8CVSS7.5AI score0.01159EPSS
Exploits0References3
OSV
OSV
added 2016/12/23 5:59 a.m.8 views

CVE-2016-7450

The fflog216bitc function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file...

7.8CVSS9.2AI score
Exploits0References3
OSV
OSV
added 2016/12/23 5:59 a.m.3 views

DEBIAN-CVE-2016-7450

The fflog216bitc function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file...

7.8CVSS7.6AI score0.01159EPSS
Exploits0References1
OSV
OSV
added 2016/12/23 5:59 a.m.2 views

UBUNTU-CVE-2016-7450

The fflog216bitc function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file...

7.8CVSS7.1AI score0.01159EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2016/12/23 5:0 a.m.33 views

CVE-2016-7450

The fflog216bitc function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file...

7.8CVSS7.6AI score0.01159EPSS
Exploits0
CVE
CVE
added 2016/12/23 5:0 a.m.66 views

CVE-2016-7450

CVE-2016-7450 affects FFmpeg up to version 3.1.3. The vulnerable code path is the ff_log2_16bit_c function in libavutil/intmath.h, which can read out-of-bounds memory when decoding a malformed AIFF file. Impact per sources is an out-of-bounds read; exploitation details are not provided beyond thi...

7.8CVSS7.5AI score0.01159EPSS
Exploits0References3Affected Software1
AlpineLinux
AlpineLinux
added 2016/12/23 5:0 a.m.50 views

CVE-2016-7450

The fflog216bitc function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file...

7.8CVSS7.6AI score0.01159EPSS
Exploits0
Veracode
Veracode
added 2016/08/29 5:59 a.m.18 views

Information Disclosure

FFmpeg is vulnerable to information disclosures. A malicious user can cause the system to read out-of-bounds memory when decoding a malformed AIFF file...

7.8CVSS7.3AI score0.01159EPSS
Exploits0References1Affected Software2
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.27 views

Fedora 23 : libsndfile (2015-71b291686c)

The remote Fedora 23 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2015-71b291686c advisory. fix CVE-2015-7805 libsndfile: Heap overflow vulnerability when parsing specially crafted AIFF header Tenable has extracted the preceding description...

9.3CVSS6.9AI score0.13294EPSS
Exploits1References2
ArchLinux
ArchLinux
added 2016/02/06 12:0 a.m.56 views

lib32-libsndfile: multiple issues

CVE-2014-9496 unspecified impact The sd2parsersrcfork function in sd2.c in lib32-libsndfile allows attackers to have unspecified impact via vectors related to a 1 map offset or 2 rsrc marker, which triggers an out-of-bounds read. - CVE-2014-9756 denial of service The psffwrite function in...

10CVSS7.4AI score0.13294EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2015/12/08 12:0 a.m.48 views

Ubuntu 14.04 LTS : libsndfile vulnerabilities (USN-2832-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2832-1 advisory. It was discovered that libsndfile incorrectly handled memory when parsing malformed files. A remote attacker could use this issue to cause libsndfile to...

9.3CVSS7.2AI score0.13294EPSS
Exploits3References4
Debian
Debian
added 2015/11/30 1:40 p.m.77 views

[SECURITY] [DLA 356-1] libsndfile security update

Package : libsndfile Version : 1.0.21-3+squeeze2 CVE ID : CVE-2014-9496 CVE-2014-9756 CVE-2015-7805 Debian Bug : 774162 804445 804447 CVE-2014-9496 The sd2parsersrcfork function in sd2.c in libsndfile allows attackers to have unspecified impact via vectors related to a 1 map offset or 2 rsrc...

9.3CVSS7.1AI score0.13294EPSS
Exploits3
OpenVAS
OpenVAS
added 2015/11/27 12:0 a.m.31 views

Mageia: Security Advisory (MGASA-2015-0455)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.8AI score0.13294EPSS
Exploits1References6
OSV
OSV
added 2015/11/26 8:47 p.m.9 views

MGASA-2015-0455 Updated libsndfile packages fix security vulnerability

Due to a heap overflow in libsndfile, a specially crafted AIFF header can manage index values in order to use memcpy to overwrite memory the heap CVE-2015-7805...

9.3CVSS5.5AI score0.13294EPSS
Exploits1References5
Mageia
Mageia
added 2015/11/26 8:47 p.m.44 views

Updated libsndfile packages fix security vulnerability

Due to a heap overflow in libsndfile, a specially crafted AIFF header can manage index values in order to use memcpy to overwrite memory the heap CVE-2015-7805...

9.3CVSS6.3AI score0.13294EPSS
Exploits1References4
CNVD
CNVD
added 2015/11/19 12:0 a.m.48 views

libsndfile heap buffer overflow vulnerability

libsndfile is a C library developed by software developer Erik de Castro Lopo that reads and writes audio files in AIFF, AU, and WAV formats through standard interfaces. A heap buffer overflow vulnerability exists in libsndfile version 1.0.25. A remote attacker can exploit the vulnerability by...

9.3CVSS6.5AI score0.13294EPSS
Exploits1References1
NVD
NVD
added 2015/11/17 3:59 p.m.22 views

CVE-2015-7805

Heap-based buffer overflow in libsndfile 1.0.25 allows remote attackers to have unspecified impact via the headindex value in the header in an AIFF file...

9.3CVSS9.9AI score0.13294EPSS
Exploits1References13
OSV
OSV
added 2015/11/17 3:59 p.m.2 views

DEBIAN-CVE-2015-7805

Heap-based buffer overflow in libsndfile 1.0.25 allows remote attackers to have unspecified impact via the headindex value in the header in an AIFF file...

9.3CVSS7.8AI score0.13294EPSS
Exploits1References1
OSV
OSV
added 2015/11/17 3:59 p.m.4 views

CVE-2015-7805

Heap-based buffer overflow in libsndfile 1.0.25 allows remote attackers to have unspecified impact via the headindex value in the header in an AIFF file...

6AI score
Exploits0References13
Rows per page
Query Builder