The vulnerability of the Cisco Discovery Protocol implementation in microprogramming software for Cisco TelePresence Codec (TC) and Cisco Collaboration Endpoint (CE) devices arises due to insufficient validation of input data. This allows attackers to execute arbitrary commands or carry out arbitrary scripts.

The vulnerability of the Cisco Discovery Protocol implementation in microprogramming software for Cisco TelePresence Codec TC and Cisco Collaboration Endpoint CE software exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitra...

CVE-2019-1878

A vulnerability in the Cisco Discovery Protocol CDP implementation for the Cisco TelePresence Codec TC and Collaboration Endpoint CE Software could allow an unauthenticated, adjacent attacker to inject arbitrary shell commands that are executed by the device. The vulnerability is due to...

Input validation

A vulnerability in the Cisco Discovery Protocol CDP implementation for the Cisco TelePresence Codec TC and Collaboration Endpoint CE Software could allow an unauthenticated, adjacent attacker to inject arbitrary shell commands that are executed by the device. The vulnerability is due to...

CVE-2019-1878

CVE-2019-1878 describes a shell-injection vulnerability in the Cisco TelePresence Codec (TC) and Collaboration Endpoint (CE) software via the Cisco Discovery Protocol (CDP). The root cause is insufficient input validation of CDP packets, enabling an unauthenticated, adjacent attacker to craft CDP...

Linux kernel input validation error vulnerability

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. An input validation error vulnerability exists in the 'wcd9335codecenabledec' function in the sound/soc/codecs/wcd9335.c file in Linux kernel 5.1.5 and earlier. The...

CVE-2019-12454

An issue was discovered in wcd9335codecenabledec in sound/soc/codecs/wcd9335.c in the Linux kernel through 5.1.5. It uses kstrndup instead of kmemdupnul, which allows attackers to have an unspecified impact via unknown vectors. NOTE: The vendor disputes this issues as not being a vulnerability...

CVE-2019-12454

An issue was discovered in wcd9335codecenabledec in sound/soc/codecs/wcd9335.c in the Linux kernel through 5.1.5. It uses kstrndup instead of kmemdupnul, which allows attackers to have an unspecified impact via unknown vectors. NOTE: The vendor disputes this issues as not being a vulnerability...

UBUNTU-CVE-2019-12454

An issue was discovered in wcd9335codecenabledec in sound/soc/codecs/wcd9335.c in the Linux kernel through 5.1.5. It uses kstrndup instead of kmemdupnul, which allows attackers to have an unspecified impact via unknown vectors. NOTE: The vendor disputes this issues as not being a vulnerability...

CVE-2019-12454

The CVE-2019-12454 vulnerability affects the Linux kernel up to version 5.1.5 in wcd9335_codec_enable_dec (sound/soc/codecs/wcd9335.c). The issue arises because kstrndup is used instead of kmemdup_nul, which could enable an unspecified impact via unknown vectors. The vendor disputes this as a vul...

CVE-2019-12454

An issue was discovered in wcd9335codecenabledec in sound/soc/codecs/wcd9335.c in the Linux kernel through 5.1.5. It uses kstrndup instead of kmemdupnul, which allows attackers to have an unspecified impact via unknown vectors. NOTE: The vendor disputes this issues as not being a vulnerability...

CVE-2019-12454

An issue was discovered in wcd9335codecenabledec in sound/soc/codecs/wcd9335.c in the Linux kernel through 5.1.5. It uses kstrndup instead of kmemdupnul, which allows attackers to have an unspecified impact via unknown vectors. NOTE: The vendor disputes this issues as not being a vulnerability...

PT-2019-12801 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 5.1.5 Description: An issue was discovered in the wcd9335 codec enable dec function in sound/soc/codecs/wcd9335.c. It uses kstrndup instead of kmemdup nul, which may allow attackers to have an unspecified impact...

Fedora Update for mediaconch FEDORA-2019-7155125125

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora Update for libmediainfo FEDORA-2019-b7cf3236fb

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 29 Update: libmediainfo-19.04-1.fc29

This package contains the shared library for MediaInfo. MediaInfo supplies technical and tag information about a video or audio file. What information can I get from MediaInfo? General: title, author, director, album, track number, date, duration... Video: codec, aspect, fps, bitrate... Audio:...

[SECURITY] Fedora 28 Update: mediainfo-19.04-1.fc28

MediaInfo CLI Command Line Interface. What information can I get from MediaInfo? General: title, author, director, album, track number, date, duration... Video: codec, aspect, fps, bitrate... Audio: codec, sample rate, channels, language, bitrate... Text: language of subtitle Chapters: number of...

[SECURITY] Fedora 28 Update: mediaconch-18.03.2-7.fc28

MediaConch is an implementation checker, policy checker, reporter, and fixer that targets preservation-level audiovisual files specifically Matroska, Linear Pulse Code Modulation LPCM and FF Video Codec 1 FFV1. This project is maintained by MediaArea and funded by PREFORMA. This package includes...

[SECURITY] Fedora 28 Update: libmediainfo-19.04-1.fc28

This package contains the shared library for MediaInfo. MediaInfo supplies technical and tag information about a video or audio file. What information can I get from MediaInfo? General: title, author, director, album, track number, date, duration... Video: codec, aspect, fps, bitrate... Audio:...

Codec H.265 not working in HDX session

H.265 not getting utilized in the HDX session with the below settings: Followed the link: https://docs.citrix.com/en-us/receiver/windows/current-release/improve/h-265-video-encoding.html Studio Policy set: 1. Graphic Status indicator - Disabled 2. Moving Image Compression - Disabled 3. Optimize...

Google Android Media framework APacketSource.cpp file remote code execution vulnerability

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. A buffer error vulnerability exists in MakeMPG4VideoCodecSpecificData in the APacketSource.cpp file in Android. The vulnerability stems from a networked system or product performing operations in...