The vulnerability of the ParseCaffHeaderConfig function in the caff.c component of the WavPack audio codec allows a hacker to cause a service failure. This vulnerability stems from the use of uninitialized variables, which can be exploited by attackers.

The vulnerability of the ParseCaffHeaderConfig function in the caff.c component of the WavPack audio codec is related to the use of previously uninitialized variables. Exploiting this vulnerability allows a remote attacker to trigger a service failure using a malicious .wav file...

The vulnerability of the ParseWave64HeaderConfig function in the wave64.c component of the WavPack audio codec, related to the use of previously uninitialized variables, allows a hacker to cause a service failure.

The vulnerability of the ParseWave64HeaderConfig function in the wave64.c component of the WavPack audio codec is related to the use of previously uninitialized variables. Exploiting this vulnerability allows a remote attacker to trigger a service failure using a malicious .wav file...

The vulnerability of the WavpackSetConfiguration64 function in the packUtils.c component of the WavPack audio codec allows a hacker to trigger a service failure by accessing an uninitialized pointer.

The vulnerability of the WavPack audio codec relates to the access to an uninitialized pointer. Exploiting this vulnerability allows a remote attacker to trigger a service failure using a DFF file without proper frequency information...

The vulnerability of the FLAC__bitreader_read_rice_signed_block function in the bitreader.c component of the FLAC audio codec, related to reading data beyond the allowed buffer limits, allows a hacker to cause a service failure.

The vulnerability of the FLACbitreaderreadricesignedblock function in the bitreader.c component of the FLAC audio codec is related to reading data beyond the allowed buffer limits. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

EulerOS Virtualization for ARM 64 3.0.2.0 : python (EulerOS-SA-2021-2096)

According to the versions of the python packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF...

ASB-A-180643802

In encodeFrames of avcencfuzzer.cpp, there is a possible out of bounds write due to a double free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

Security Bulletin: Apache Commons Codec Vulnerability affects IBM Rational ClearQuest (177835)

Summary IBM Rational ClearQuest is vulnerable to an Apache Commons Codec vulnerability. IBM Rational ClearQuest has addressed the vulnerability. Vulnerability Details Third Party Entry: 177835 DESCRIPTION: Apache Commons Codec information disclosure CVSS Base score: 7.5 CVSS Temporal Score: See:...

PT-2021-7714 · Libde265 +3 · Libde265 +3

Name of the Vulnerable Software and Affected Versions: libde265 version 1.0.8 Description: The issue is related to the insufficient use of the assert function in the sps.cc component of the libde265 h.265 video codec implementation. This can be exploited by a remote attacker using a specially...

CVE-2021-0607

In iaxxxcalci2sdiv of iaxxx-codec.c, there is a possible hardware port write with user controlled data due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

Fedora: Security Advisory for go-avif (FEDORA-2021-1c3f7963a5)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 34 Update: go-avif-0.1.0-8.fc34

Go-avif implements AVIF AV1 Still Image File Format encoder for Go using libaom, the high quality AV1 codec...

Important: Red Hat Security Advisory: libwebp security update

An update for libwebp is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

3.6 bug fix and enhancement update

An update is available for apache-commons-io, atinject, jsr-305, maven-shared-utils, plexus-cipher, aopalliance, plexus-classworlds, guava, apache-commons-cli, plexus-containers, plexus-sec-dispatcher, httpcomponents-client, maven-resolver, apache-commons-lang3, plexus-interpolation, sisu,...

openSUSE: Security Advisory for vlc (openSUSE-SU-2021:0691-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Microsoft Windows Multiple Vulnerabilities (KB5003197)

This host is missing a critical security update according to Microsoft KB5003197 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for vlc (moderate)

openSUSE Security Update: Security update for vlc Announcement ID: openSUSE-SU-2021:0714-1 Rating: moderate References: 1181918 Cross-References: CVE-2020-26664 CVSS scores: CVE-2020-26664 NVD : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: openSUSE Backports SLE-15-SP2 An...

Security Bulletin: IBM InfoSphere Information Server is affected by a vulnerability in Apache Commons Codec

Summary A vulnerability in Apache Commons Codec that is used by IBM InfoSphere Information Server was addressed. Vulnerability Details Third Party Entry: 177835 DESCRIPTION: Apache Commons Codec could allow a remote attacker to obtain sensitive information, caused by the improper validation of...

Google Android 缓冲区错误漏洞

Google Android is a Linux-based open source operating system from the Google Open Handheld Consortium Google. Google Android iaxxx-codec.c suffers from an elevation of privilege vulnerability. An attacker can exploit this vulnerability to cause a local elevation of privilege...

The vulnerability of the Media Photo Codec component in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Media Photo Codec component in Windows operating systems is related to security flaws in the handling of service data. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...

CVE-2020-35979

An issue was discovered in GPAC version 0.8.0 and 1.0.1. There is heap-based buffer overflow in the function gprtpbuilderdoavc in ietf/rtppckmpeg4.c...