music-metadata 安全漏洞

music-metadata is an audio file metadata extraction library developed by Borewit’s individual developers. Versions of music-metadata prior to 11.12.3 contained a security vulnerability. This vulnerability stemmed from the ASF parser improperly handling objects with an objectSize of 0, which could...

EUVD-2018-10706

Malware in sbrugna...

EUVD-2018-10710

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2018-1999015

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FFmpeg before commit 5aba5b89d0b1d73164d3b81764828bb8b20ff32a contains an out of array read vulnerability in ASFF format demuxer that can result in heap memory...

SUSE CVE-2017-14223

In libavformat/asfdecf.c in FFmpeg 3.3.3, a DoS in asfbuildsimpleindex due to lack of an EOF End of File check might cause huge CPU consumption. When a crafted ASF file, which claims a large "ict" field in the header but does not contain sufficient backing data, is provided, the for loop would...

SUSE CVE-2017-18236

An issue was discovered in Exempi before 2.4.4. The ASFSupport::ReadHeaderObject function in XMPFiles/source/FormatSupport/ASFSupport.cpp allows remote attackers to cause a denial of service infinite loop via a crafted .asf file...

CVE-2018-1999015

FFmpeg before commit 5aba5b89d0b1d73164d3b81764828bb8b20ff32a contains an out of array read vulnerability in ASFF format demuxer that can result in heap memory reading. This attack appear to be exploitable via specially crafted ASF file that has to provided as input. This vulnerability appears to...