Asterisk SDP Offer DoS Vulnerability (AST-2016-008)

Asterisk is prone to a SDP offer denial of service DoS vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

UBUNTU-CVE-2016-8654

A heap-buffer overflow vulnerability was found in QMFB code in JPC codec caused by buffer being allocated with too small size. jasper versions before 2.0.0 are affected...

CVE-2016-8654

A heap-buffer overflow vulnerability was found in QMFB code in JPC codec caused by buffer being allocated with too small size. jasper versions before 2.0.0 are affected...

CVE-2016-8654

A heap-buffer overflow vulnerability was found in QMFB code in JPC codec caused by buffer being allocated with too small size. jasper versions before 2.0.0 are affected...

CVE-2016-9447

A memory corruption flaw was found in GStreamer's Nintendo NSF music file format decoding plug-in. A remote attacker could use this flaw to cause an application using GStreamer to crash or, potentially, execute arbitrary code with the privileges of the user running the application. Mitigation sud...

JasPer Denial of Service Vulnerability (CNVD-2016-11398)

JasPer is an open source implementation of the JPEG-2000 codec . JasPer suffers from a denial of service vulnerability that can be exploited by an attacker to cause a denial of service...

JasPer Denial of Service Vulnerability (CNVD-2016-11390)

JasPer is an open source implementation of the JPEG-2000 codec . A denial of service vulnerability exists in JasPer. An attacker exploiting this vulnerability could cause a denial of service breach...

JasPer Denial of Service Vulnerability (CNVD-2016-11403)

JasPer is an open source implementation of the JPEG-2000 codec . JasPer suffers from a denial of service vulnerability that can be exploited by an attacker to cause a denial of service...

JasPer Denial of Service Vulnerability (CNVD-2016-11404)

JasPer is an open source implementation of the JPEG-2000 codec . JasPer suffers from a denial of service vulnerability that can be exploited by attackers to cause a denial of service attack...

DSA-3713-1 gst-plugins-bad0.10 - security update

Bulletin has no description...

asterisk -- Crash on SDP offer or answer from endpoint using Opus

The Asterisk project reports: If an SDP offer or answer is received with the Opus codec and with the format parameters separated using a space the code responsible for parsing will recursively call itself until it crashes. This occurs as the code does not properly handle spaces separating the...

[SECURITY] Fedora 24 Update: libwebp-0.5.1-2.fc24

WebP is an image format that does lossy compression of digital photographic images. WebP consists of a codec based on VP8, and a container based on RIFF. Webmasters, web developers and browser developers can use WebP to compress, archive and distribute digital images more efficiently...

JasPer null pointer back-reference vulnerability (CNVD-2016-10303)

JasPer is a Canadian software developer Michael Adams developed an open source implementation of the JPEG-2000 codec. A security vulnerability exists in JasPer bmpdec.c:398:5, which can be exploited by attackers to crash an application and deny service to legitimate users...

JasPer Null Pointer Backreference Vulnerability

JasPer is a Canadian software developer Michael Adams developed an open source implementation of the JPEG-2000 codec. JasPer bmpdec.c:394:5 contains a null pointer back-reference vulnerability that can be exploited by an attacker to crash an application and deny service to a legitimate user...

JasPer Denial of Service Vulnerability (CNVD-2016-10036)

JasPer is a Canadian software developer Michael Adams developed an open source implementation of the JPEG-2000 codec. A denial of service vulnerability exists in JasPer. An attacker could exploit this vulnerability to crash the application, resulting in a denial of service...

JasPer Denial of Service Vulnerability (CNVD-2016-10047)

JasPer is a Canadian software developer Michael Adams developed an open source implementation of the JPEG-2000 codec. A denial of service vulnerability exists in JasPer, which can be exploited by an attacker to crash an application and cause a denial of service...

[SECURITY] Fedora 25 Update: openjpeg2-2.1.2-1.fc25

The OpenJPEG library is an open-source JPEG 2000 library developed in order to promote the use of JPEG 2000. This package contains JPEG 2000 codec compliant with the Part 1 of the standard Class-1 Profil e-1 compliance. JP2 JPEG 2000 standard Part 2 - Handling of JP2 boxes and extended multi ple...

[SECURITY] Fedora 24 Update: openjpeg2-2.1.2-1.fc24

The OpenJPEG library is an open-source JPEG 2000 library developed in order to promote the use of JPEG 2000. This package contains JPEG 2000 codec compliant with the Part 1 of the standard Class-1 Profil e-1 compliance. JP2 JPEG 2000 standard Part 2 - Handling of JP2 boxes and extended multi ple...

OpenJPEG heap buffer overflow vulnerability (CNVD-2016-08060)

OpenJPEG is an open source JPEG 2000 codec written in C language. A heap buffer overflow vulnerability exists in OpenJPEG that can be exploited by an attacker to execute arbitrary code in the context of an affected program...

A AV also the recruitment of cve-2 0 1 0-2 5 5 3 vulnerability analysis-vulnerability warning-the black bar safety net

Just imagine: one day, your friends give you a video file, which claims to be the teacher Chen beat the hoary division of the teacher theme of the latest movie. avi, you full of joy, in determining the file formats really as avi format, happy took off his pants ready to enjoy, open after but foun...