3142 matches found
CVE-2017-7604
CVE-2017-7604 affects HE-AAC+ Codec (libaacplus) 2.0.2; the au_channel.h left-shift undefined behavior could allow remote attackers to cause a denial of service (application crash) via a crafted audio file. Connected sources confirm the vulnerable component/file and the potential impact; exploita...
CVE-2017-7603
CVE-2017-7603 concerns the HE-AAC+ Codec (libaacplus) 2.0.2, where a signed integer overflow in au_channel.h may allow remote attackers to cause a denial of service (application crash) or potentially other impact via a crafted audio file. The connected sources corroborate the component, version, ...
CVE-2017-7603
auchannel.h in HE-AAC+ Codec aka libaacplus 2.0.2 has a signed integer overflow, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted audio file...
CVE-2017-7605
aacplusenc.c in HE-AAC+ Codec aka libaacplus 2.0.2 has an assertion failure, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted audio file...
CVE-2017-7604
auchannel.h in HE-AAC+ Codec aka libaacplus 2.0.2 has a left-shift undefined behavior issue, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted audio file...
PT-2017-17835 · Fraunhofer Iis · He-Aac+ Codec
Name of the Vulnerable Software and Affected Versions: HE-AAC+ Codec aka libaacplus version 2.0.2 Description: The issue is related to a left-shift undefined behavior in the au channel.h file, which could allow remote attackers to cause a denial of service, potentially leading to an application...
PT-2017-17836 · Fraunhofer Iis · He-Aac+ Codec
Name of the Vulnerable Software and Affected Versions: HE-AAC+ Codec aka libaacplus version 2.0.2 Description: The issue is related to an assertion failure in the aacplusenc.c file, which could allow remote attackers to cause a denial of service, potentially leading to an application crash, or...
PT-2017-17834 · Fraunhofer Iis · He-Aac+ Codec
Name of the Vulnerable Software and Affected Versions: HE-AAC+ Codec aka libaacplus version 2.0.2 Description: The issue is related to a signed integer overflow in the au channel.h file, which could allow remote attackers to cause a denial of service, resulting in an application crash, or possibl...
UBUNTU-CVE-2016-9389
The jpcirct and jpciict functions in jpcmct.c in JasPer before 1.900.14 allow remote attackers to cause a denial of service assertion failure...
The vulnerability of the Android operating system, which allows a malicious actor to compromise data privacy
The vulnerability of the MediaTek video codec driver for the Android operating system is related to the lack of protection for service data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to compromise data confidentiality through a local malware application...
The vulnerability of the Android operating system, which allows a malicious actor to compromise data privacy
The vulnerability of the HTC Sound Codec driver for the Android operating system is related to the lack of protection for sensitive data. Exploiting this vulnerability allows a remote attacker to compromise data confidentiality through a local malicious application...
PT-2017-17362 · Unknown +2 · Audio File Library +2
Name of the Vulnerable Software and Affected Versions: Audio File Library version 0.3.6 Description: The issue allows remote attackers to cause a denial of service, resulting in a divide-by-zero error and crash, via a crafted file. This is due to a problem in the reset1 function in...
UBUNTU-CVE-2017-6835
The reset1 function in libaudiofile/modules/BlockCodec.cpp in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service divide-by-zero error and crash via a crafted file...
CVE-2017-0535
An information disclosure vulnerability in the HTC sound codec driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10...
CVE-2017-0535
An information disclosure vulnerability in the HTC sound codec driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10...
CVE-2017-0532
An information disclosure vulnerability in the MediaTek video codec driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: N/A...
CVE-2017-0532
An information disclosure vulnerability in the MediaTek video codec driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: N/A...
CVE-2017-0532
An information disclosure vulnerability in the MediaTek video codec driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: N/A...
CVE-2017-0535
An information disclosure vulnerability in the HTC sound codec driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10...
Information disclosure
An information disclosure vulnerability in the HTC sound codec driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10...