UBUNTU-CVE-2017-2986

Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable heap overflow vulnerability in the Flash Video FLV codec. Successful exploitation could lead to arbitrary code execution...

CVE-2017-2986

Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable heap overflow vulnerability in the Flash Video FLV codec. Successful exploitation could lead to arbitrary code execution...

CVE-2017-2991

Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable memory corruption vulnerability in the h264 codec related to decompression. Successful exploitation could lead to arbitrary code execution...

CVE-2017-2991

Adobe Flash Player versions 24.0.0.194 and earlier contain a memory corruption vulnerability in the h264 codec (decompression). Successful exploitation could lead to arbitrary code execution. The CVE is referenced across multiple advisories, with fixes in version 24.0.0.221 (and newer) recommende...

CVE-2017-2986

CVE-2017-2986 affects Adobe Flash Player, specifically the Flash Video (FLV) codec. The vulnerability is an exploitable heap overflow in the FLV codec for Flash Player versions 24.0.0.194 and earlier, which could allow arbitrary code execution. Evidence from multiple advisories confirms affected ...

PT-2017-1249 · Adobe +3 · Flash Player +3

Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions 24.0.0.194 and earlier Description: The issue is related to a heap overflow vulnerability in the Flash Video FLV codec. This vulnerability could be exploited to achieve arbitrary code execution. The vulnerability i...

PT-2017-1245 · Adobe +3 · Flash Player +3

Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions 24.0.0.194 and earlier Description: The issue is related to a memory corruption vulnerability in the h264 codec, specifically tied to decompression. This vulnerability can be exploited to achieve arbitrary code...

CVE-2017-2991

Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable memory corruption vulnerability in the h264 codec related to decompression. Successful exploitation could lead to arbitrary code execution...

CVE-2017-2986

Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable heap overflow vulnerability in the Flash Video FLV codec. Successful exploitation could lead to arbitrary code execution...

Adobe Flash Player Memory Corruption (APSB17-04: CVE-2017-2991)

A memory corruption vulnerability exists in Adobe Flash Player. The vulnerability is due to an error in h264 codec while parsing a specially crafted mp4 file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted file...

Denial Of Service (DoS)

FFmpeg is vulnerable to denial of service DoS and possibly other attacks. These attacks are possible because utils.c removes a codec ID when enforcing alignment. This allows attackers to cause an out-of-bounds access error through JV data...

JasPer Denial of Service Vulnerability (CNVD-2017-01028)

JasPer is a Canadian software developer Michael Adams developed an open source implementation of the JPEG-2000 codec. A denial of service vulnerability exists in JasPer. An attacker could exploit this vulnerability to crash the application, resulting in a denial of service...

JasPer Denial of Service Vulnerability (CNVD-2017-01029)

JasPer is a Canadian software developer Michael Adams developed an open source implementation of the JPEG-2000 codec. A denial of service vulnerability exists in JasPer. An attacker could exploit this vulnerability to crash the application, resulting in a denial of service...

[SECURITY] Fedora 25 Update: audacious-3.8.2-1.fc25

Audacious is an advanced audio player. It is free, lightweight, currently based on GTK+ 2, runs on Linux and many other nix platforms and is focused on audio quality and supporting a wide range of audio codecs. It still features an alternative skinned user interface based on Winamp 2.x skins...

Debian DLA-793-1 : opus security update

A remote code execution vulnerability was discovered in opus, an audio codec, that could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. For Debian 7 'Wheezy', these problems have been fixed in version...

[SECURITY] [DLA 793-1] opus security update

Package : opus Version : 0.9.14+20120615-1+nmu1+deb7u1 CVE ID : CVE-2017-0381 Debian Bug : 851612 A remote code execution vulnerability was discovered in opus, an audio codec, that could enable an attacker using a specially crafted file to cause memory corruption during media file and data...

[SECURITY] Fedora 24 Update: opus-1.1.3-2.fc24

The Opus codec is designed for interactive speech and audio transmission ov er the Internet. It is designed by the IETF Codec Working Group and incorporat es technology from Skype's SILK codec and Xiph.Org's CELT codec...

[SECURITY] Fedora 25 Update: opus-1.1.3-2.fc25

The Opus codec is designed for interactive speech and audio transmission ov er the Internet. It is designed by the IETF Codec Working Group and incorporat es technology from Skype's SILK codec and Xiph.Org's CELT codec...

Debian DLA-780-1 : libav security update

Multiple vulnerabilities have been found in libav : CVE-2016-7424 The putnorndpixels8xy2mmx function in x86/rndtemplate.c in libav 11.7 and earlier allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted MP3 file. No CVE assigned The h264 codec is...

Privilege escalation

An elevation of privilege vulnerability in the HTC sound codec driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions:...