CVE-2019-9283

In AAC Codec, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112663564...

CVE-2019-9247

In AAC Codec, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-120426166...

CVE-2019-9247

In AAC Codec, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-120426166...

Out-of-bounds

In the m4vh263 codec, there is a possible out of bounds read due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-109891727...

Information disclosure

In AAC Codec, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-120426166...

Input validation

In AAC Codec, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112663564...

CVE-2019-9347

CVE-2019-9347 affects Android 10 via the m4v_h263 codec. The vulnerability is an out-of-bounds read caused by a use-after-free, leading to local information disclosure without requiring user interaction. Documentation across sources confirms the issue in the Media framework; exploitation details ...

CVE-2019-9283

In AAC Codec, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112663564...

CVE-2019-9283

CVE-2019-9283 affects the Android 10 AAC Codec, where a vulnerability in input validation can cause resource exhaustion leading to a remote Denial of Service. The impact is DoS with high availability impact, and exploitation requires user interaction. The root cause is improper input validation w...

CVE-2019-9247

In AAC Codec, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-120426166...

CVE-2019-9247

CVE-2019-9247 affects the Android 10 AAC Codec component, stemming from a missing variable initialization that can lead to remote information disclosure. According to NVD metadata, the CVSS v3.1 base score is 6.5 (Medium) with NETWORK attack vector, LOW complexity, no privileges required, but use...

UBUNTU-CVE-2019-15145

DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack application crash via an out-of-bounds read by crafting a corrupted JB2 image file that is mishandled in JB2Dict::JB2Codec::getdirectcontext in libdjvu/JB2Image.h because of a missing zero-bytes check in libdjvu/GBitmap.h...

JasPer: Multiple vulnerabilities

Background JasPer is a software-based implementation of the codec specified in the JPEG-2000 Part-1 standard. Description Multiple vulnerabilities have been discovered in JasPer. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers fo...

CVE-2019-13962

lavcCopyPicture in modules/codec/avcodec/video.c in VideoLAN VLC media player through 3.0.7 has a heap-based buffer over-read because it does not properly validate the width and height...

CVE-2019-13962

lavcCopyPicture in modules/codec/avcodec/video.c in VideoLAN VLC media player through 3.0.7 has a heap-based buffer over-read because it does not properly validate the width and height...

USN-4062-1: WavPack vulnerabilities

Rohan Padhye discovered that WavPack incorrectly handled certain WAV files. An attacker could possibly use this issue to cause a denial of service. CVE-2019-1010315, CVE-2019-1010317, CVE-2019-1010318, CVE-2019-1010319...

Android 7 - 9 VideoPlayer - ihevcd_parse_pps Out-of-Bounds Write

Android 7 - 9 VideoPlayer - ihevcdparsepps Out-of-Bounds Write CVE-2019-2107 - looks scary. Still remember Stagefright and PNG bugs vulns .... With CVE-2019-2107 the decoder/codec runs under mediacodec user and with properly "crafted" video with tiles enabled - pspps-i1tilesenabledflag you can...

CVE-2019-2109

In MakeMPEG4VideoCodecSpecificData of AVIExtractor.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions:...

Cisco TelePresence Codec and Collaboration Endpoint Software Operating System Command Injection Vulnerability

Cisco TelePresence Integrator C Series and so on are the products of the United States Cisco Cisco company.Cisco TelePresence Integrator C Series is a set of C series telepresence system.Cisco TelePresence EX Series is a set of EX series telepresence system.Cisco TelePresence SX Series is a set o...

The vulnerability in the implementation of the ir_lirc_unregister handler in Linux kernels allows a malicious actor to trigger a service failure.

The vulnerability of the implementation of the irlircunregister handler in the loaded module drivers/media/rc/ir-lirc-codec.ko of the Linux operating system is related to a memory leak. Exploiting this vulnerability could allow an attacker to cause a system failure by repeatedly loading and...