CVE-2016-10231

CVE-2016-10231 is an elevation-of-privilege vulnerability in the Qualcomm sound codec driver affecting the Android kernel. The issue could allow a local attacker with access to the device to execute code with kernel privileges. Public references in the connected records tie it to the Qualcomm sou...

UBUNTU-CVE-2017-18244

The stereoprocessing function in libavcodec/aacps.c in Libav 12.2 allows remote attackers to cause a denial of service out-of-bounds read via a crafted aac file, related to ffpsapply...

Elastic Logstash 'CVE-2016-10363' DoS Vulnerability

Elastic Logstash is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

USN-3578-1: WavPack vulnerabilities

It was discovered that WavPack incorrectly handled certain DSDIFF files. An attacker could possibly use this to execute arbitrary code or cause a denial of service. CVE-2018-7253 It was discovered that WavPack incorrectly handled certain CAF files. An attacker could possibly use this to cause a...

CVE-2018-7285

A NULL pointer access issue was discovered in Asterisk 15.x through 15.2.1. The RTP support in Asterisk maintains its own registry of dynamic codecs and desired payload numbers. While an SDP negotiation may result in a codec using a different payload number, these desired ones are still stored...

Null pointer dereference

A NULL pointer access issue was discovered in Asterisk 15.x through 15.2.1. The RTP support in Asterisk maintains its own registry of dynamic codecs and desired payload numbers. While an SDP negotiation may result in a codec using a different payload number, these desired ones are still stored...

CVE-2018-7285

A NULL pointer access issue was discovered in Asterisk 15.x through 15.2.1. The RTP support in Asterisk maintains its own registry of dynamic codecs and desired payload numbers. While an SDP negotiation may result in a codec using a different payload number, these desired ones are still stored...

[SECURITY] [DSA 4113-1] libvorbis security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4113-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 14, 2018 https://www.debian.org/security/faq -...

CVE-2017-13230

In hevc codec, there is an out-of-bounds write due to an incorrect bounds check with the i2picwidthinlumasamples value. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 7.0,...

CVE-2017-13230

In hevc codec, there is an out-of-bounds write due to an incorrect bounds check with the i2picwidthinlumasamples value. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 7.0,...

Out-of-bounds

In hevc codec, there is an out-of-bounds write due to an incorrect bounds check with the i2picwidthinlumasamples value. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 7.0,...

CVE-2017-13230

In hevc codec, there is an out-of-bounds write due to an incorrect bounds check with the i2picwidthinlumasamples value. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 7.0,...

CVE-2017-13230

CVE-2017-13230 affects the Android Media framework, specifically an out-of-bounds write in the HEVC (H.265) codec caused by an incorrect bounds check on i2_pic_width_in_luma_samples. This can enable remote escalation of privilege with no additional execution privileges required, though exploitati...

FreeBSD : p7zip-codec-rar -- insufficient error handling (7a2e0063-0e4e-11e8-94c0-5453ed2e2b49)

MITRE reports : Insufficient exception handling in the method NCompress::NRar3::CDecoder::Code of 7-Zip before 18.00 and p7zip can lead to multiple memory corruptions within the PPMd code, alows remote attackers to cause a denial of service segmentation fault or execute arbitrary code via a craft...

UBUNTU-CVE-2018-6621

The decodeframe function in libavcodec/utvideodec.c in FFmpeg through 3.2 allows remote attackers to cause a denial of service out of array read via a crafted AVI file...

CVE-2017-13230

In hevc codec, there is an out-of-bounds write due to an incorrect bounds check with the i2picwidthinlumasamples value. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 7.0,...

New Lossless Compression Codec (MDRLE) Added to HDX Thinwire Graphics

There are 3 Thinwire bitmap encoding modes used in current XenApp and XenDesktop Server OS and Desktop OS VDA graphics remoting: Full screen H.264 Thinwire Plus Thinwire Plus with selective H.264 Legacy GDI remoting uses the XPDM Remoting driver and so does not use a Thinwire bitmap encoder Curre...

CVE-2017-13182

In the sendFormatChange function of ACodec, there is a possible integer overflow which could lead to an out-of-bounds write. This could lead to a local elevation of privilege enabling code execution as a privileged process with no additional execution privileges needed. User interaction is not...

CVE-2017-13190

A vulnerability in the Android media framework libhevc related to handling pscodecobj memory allocation failures. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-68299873...

CVE-2017-13186

A vulnerability in the Android media framework libavc related to incorrect use of mmco parameters. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-65735716...