BIT-APR-2021-35940 Regression of CVE-2017-12613

An out-of-bounds array read in the aprtimeexp functions was fixed in the Apache Portable Runtime 1.6.3 release CVE-2017-12613. The fix for this issue was not carried forward to the APR 1.7.x branch, and hence version 1.7.0 regressed compared to 1.6.3 and is vulnerable to the same issue...

CVE-2021-40020

There is an Out-of-bounds array read vulnerability in the security storage module in smartphones. Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2018-1999015

FFmpeg before commit 5aba5b89d0b1d73164d3b81764828bb8b20ff32a contains an out of array read vulnerability in ASFF format demuxer that can result in heap memory reading. This attack appear to be exploitable via specially crafted ASF file that has to provided as input. This vulnerability appears to...

CVE-2017-14633

CVE-2017-14633 : In Xiph.Org libvorbis 1.3.5, there is an out-of-bounds array read in mapping0_forward() of mapping0.c that may cause a denial of service when processing a crafted audio file with vorbis_analysis(). The issue is fixed upstream in libvorbis 1.3.6. Public advisories across distribut...