Lucene search
K

248 matches found

Positive Technologies
Positive Technologies
added 2023/12/06 12:0 a.m.5 views

PT-2023-31054 · Jellyfin · Jellyfin

Name of the Vulnerable Software and Affected Versions: Jellyfin versions prior to 10.8.13 Description: The issue concerns an argument injection in the VideosController, specifically the "/Videos//stream" and "/Videos//stream." endpoints, which are reachable by an unauthenticated user. Additional...

8.8CVSS7AI score0.01251EPSS
Exploits1References10
RedHat Linux
RedHat Linux
added 2023/11/07 9:3 a.m.1 views

kernel: ASoC: codecs: tx-macro: Fix for KASAN: slab-out-of-bounds

A slab-out-of-bounds read vulnerability was found in the Linux kernel's ASoC tx-macro codec driver. The decimator variable was incorrectly sized at 32 bits, causing regcacheflatread to access memory beyond the allocated slab when reading register cache values during the txmacrodigitalmute...

5.8AI score0.00168EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2023/09/29 12:0 a.m.9 views

The vulnerability of the bitwriter_grow_ function in the FLAC audio codec allows a hacker to execute arbitrary code.

The vulnerability of the bitwritergrow function in the FLAC audio codec is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS7.9AI score0.00749EPSS
Exploits1References15Affected Software9
Fedora
Fedora
added 2023/09/16 1:41 a.m.38 views

[SECURITY] Fedora 37 Update: flac-1.3.4-3.fc37

FLAC stands for Free Lossless Audio Codec. Grossly oversimplified, FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, flac, a command-line program to encode and decode FLAC files, metaflac, a command-line...

7.8CVSS6.9AI score0.00749EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2023/09/11 1:23 p.m.17 views

Important: Red Hat Security Advisory: flac security update

An update for flac is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

7.8CVSS7.3AI score0.00749EPSS
Exploits1References2
AlmaLinux
AlmaLinux
added 2023/09/11 12:0 a.m.33 views

Important: flac security update

FLAC stands for Free Lossless Audio Codec. FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, a command-line program to encode and decode FLAC files, and a command-line metadata editor for FLAC files...

7.8CVSS7.6AI score0.00749EPSS
Exploits1References4
OSV
OSV
added 2023/09/11 12:0 a.m.22 views

ALSA-2023:5048 Important: flac security update

FLAC stands for Free Lossless Audio Codec. FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, a command-line program to encode and decode FLAC files, and a command-line metadata editor for FLAC files...

7.8CVSS8.2AI score0.00749EPSS
Exploits1References4
OSV
OSV
added 2023/09/11 12:0 a.m.33 views

ALSA-2023:5046 Important: flac security update

FLAC stands for Free Lossless Audio Codec. FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, a command-line program to encode and decode FLAC files, and a command-line metadata editor for FLAC files...

7.8CVSS8.2AI score0.00749EPSS
Exploits1References4
AlmaLinux
AlmaLinux
added 2023/09/11 12:0 a.m.38 views

Important: flac security update

FLAC stands for Free Lossless Audio Codec. FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, a command-line program to encode and decode FLAC files, and a command-line metadata editor for FLAC files...

7.8CVSS7.6AI score0.00749EPSS
Exploits1References4
OSV
OSV
added 2023/08/22 7:16 p.m.1 views

UBUNTU-CVE-2020-22219

Buffer Overflow vulnerability in function bitwritergrow in flac before 1.4.0 allows remote attackers to run arbitrary code via crafted input to the encoder...

7.8CVSS7.4AI score0.00749EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/08/22 12:0 a.m.4 views

Free Lossless Audio Codec 安全漏洞

Free Lossless Audio Codec FLAC is an open source software from the Xiph.Org Foundation open source. It can reduce the amount of storage space needed to store digital audio signals. A security vulnerability exists in versions of Free Lossless Audio Codec prior to 1.4.0, which stems from a buffer...

7.8CVSS8.2AI score0.00749EPSS
Exploits1References9
Vulnrichment
Vulnrichment
added 2023/08/08 9:15 a.m.20 views

CVE-2023-28555 Buffer Over-read in Audio

Transient DOS in Audio while remapping channel buffer in media codec decoding...

7.5CVSS7.1AI score0.00344EPSS
Exploits0References1
OSV
OSV
added 2023/06/14 2:15 p.m.1 views

UBUNTU-CVE-2023-34823

fdkaac before 1.0.5 was discovered to contain a stack overflow in readcallback function in src/main.c...

5.5CVSS5.8AI score0.00293EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.4 views

kernel: ASoC: da7219: Fix an error handling path in da7219_register_dai_clks()

A flaw was found in the Linux kernel's ASoC da7219 audio codec driver. An error handling path in da7219registerdaiclks incorrectly attempts to unregister a clock that was never successfully registered. This could lead to incorrect resource cleanup during driver probe failure, potentially causing...

5.9AI score0.00168EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.2 views

kernel: ASoC: da7219: Fix an error handling path in da7219_register_dai_clks()

A flaw was found in the Linux kernel's ASoC da7219 audio codec driver. An error handling path in da7219registerdaiclks incorrectly attempts to unregister a clock that was never successfully registered. This could lead to incorrect resource cleanup during driver probe failure, potentially causing...

5.9AI score0.00168EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:48 a.m.3 views

SUSE CVE-2017-6888

An error in the "readmetadatavorbiscomment" function src/libFLAC/streamdecoder.c in FLAC version 1.3.2 can be exploited to cause a memory leak via a specially crafted FLAC file...

4CVSS6.8AI score0.01372EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:35 a.m.6 views

SUSE CVE-2017-18244

The stereoprocessing function in libavcodec/aacps.c in Libav 12.2 allows remote attackers to cause a denial of service out-of-bounds read via a crafted aac file, related to ffpsapply...

6.5CVSS6.8AI score0.01029EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:47 a.m.3 views

SUSE CVE-2021-4156

An out-of-bounds read flaw was found in libsndfile's FLAC codec functionality. An attacker who is able to submit a specially crafted file via tricking a user to open or otherwise to an application linked with libsndfile and using the FLAC codec, could trigger an out-of-bounds read that would most...

6.1CVSS7.2AI score0.01754EPSS
Exploits1References9
OSV
OSV
added 2022/11/15 12:0 a.m.29 views

ALSA-2022:8078 Moderate: flac security update

FLAC stands for Free Lossless Audio Codec. FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, a command-line program to encode and decode FLAC files, and a command-line metadata editor for FLAC files...

5.5CVSS6AI score0.00465EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/11/14 12:0 a.m.2 views

PT-2022-34893 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.7 Description: The issue is related to a possible memory leak in the snd ac97 dev register function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...

7.1AI score
Exploits0References1
Rows per page
Query Builder