44 matches found
CVE-2025-21042
Out-of-bounds write in libimagecodec.quram.so prior to SMR Apr-2025 Release 1 allows remote attackers to execute arbitrary code...
EUVD-2025-29028
Out-of-bounds write in libimagecodec.quram.so prior to SMR Sep-2025 Release 1 allows remote attackers to execute arbitrary code...
PT-2025-37297
Name of the Vulnerable Software and Affected Versions Samsung devices versions Android 13 through 16 Description A critical out-of-bounds write vulnerability exists in the libimagecodec.quram.so library, potentially allowing remote attackers to execute arbitrary code on vulnerable devices. This...
VulnCheck KEV: CVE-2025-21043
Out-of-bounds write in libimagecodec.quram.so prior to SMR Sep-2025 Release 1 allows remote attackers to execute arbitrary code...
Astra Linux – Vulnerability in libvpx
There are integer overflows in the libvpx library in versions prior to 1.14.1. Calling vpximgalloc with a large value of the dw, dh, or align parameter may lead to integer overflows in the calculations of buffer sizes and offsets, and some fields of the returned vpximaget struct may become invali...
libvpx: Integer overflow in vpx_img_alloc()
A flaw was found in libvpx. When creating images, libvpx trusts the width, height, and alignment of the user input. However, it does not properly validate the provided values. This flaw allows an attacker to craft user inputs or trick the user into opening crafted files, where these types of valu...
[SECURITY] [DLA 3881-1] aom security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3881-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk September 07, 2024 https://wiki.debian.org/LTS -...
Debian dla-3881 : aom-tools - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-3881 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3881-1 [email protected] https://www.debian.org/lts/security/...
Debian dsa-5753 : aom-tools - security update
The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5753 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5753-1 [email protected] https://www.debian.org/security/ Moritz...
Number withdrawn
libyaml is a codec library for YAML from the YAML community. This CVE number has been withdrawn...
Number withdrawn
libyaml is a codec library for YAML from the YAML community. This CVE number has been withdrawn...
Number withdrawn
libyaml is a codec library for YAML from the YAML community. This CVE number has been withdrawn...
libvpx: Heap buffer overflow in vp8 encoding in libvpx
A heap-based buffer overflow flaw was found in the way libvpx, a library used to process VP8 and VP9 video codecs data, processes certain specially formatted video data via a crafted HTML page. This flaw allows an attacker to crash or remotely execute arbitrary code in an application, such as a w...
DEBIAN-CVE-2023-44488
VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding...
Vulnerabilities fixed in Microsoft Windows
Microsoft has fixed vulnerabilities in Windows. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can lead to the following categories of damage: Denial-of-Service DoS. Circumvention of security measure Remote code execution User rights Access to sensitive...
UBUNTU-CVE-2023-34823
fdkaac before 1.0.5 was discovered to contain a stack overflow in readcallback function in src/main.c...
SUSE CVE-2017-18244
The stereoprocessing function in libavcodec/aacps.c in Libav 12.2 allows remote attackers to cause a denial of service out-of-bounds read via a crafted aac file, related to ffpsapply...
CVE-2019-9338
In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111762686...
CVE-2017-13186
A vulnerability in the Android media framework libavc related to incorrect use of mmco parameters. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-65735716...
Google Android Media framework (libavc) Denial of Service Vulnerability
Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA. media framework libavc is one of the frameworks used for multimedia development. A denial of service vulnerability exists in Media framework libavc in Android. A remote attacker ca...