[SECURITY] Fedora 15 Update: libvpx-1.0.0-1.fc15

libvpx provides the VP8 SDK, which allows you to integrate your applications with the VP8 video codec, a high quality, royalty free, open source codec deployed on millions of computers and devices worldwide...

CVE-2012-0928

The ATRAC codec in RealNetworks RealPlayer 11.x and 14.x through 14.0.7, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer 12.x before 12.0.0.1703 does not properly decode samples, which allows remote attackers to execute arbitrary code via a crafted ATRAC audio file...

Code injection

Unspecified vulnerability in the RV40 codec in RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via a crafted RV40 RealVideo video stream...

Code injection

The RV20 codec in RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, does not properly handle the frame size array, which allows remote attackers to execute arbitrary code via a crafted RV20 RealVideo video stream...

Code injection

The ATRAC codec in RealNetworks RealPlayer 11.x and 14.x through 14.0.7, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer 12.x before 12.0.0.1703 does not properly decode samples, which allows remote attackers to execute arbitrary code via a crafted ATRAC audio file...

Code injection

The RV10 codec in RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, does not properly handle height and width values, which allows remote attackers to execute arbitrary code via a crafted RV10 RealVideo video stream...

CVE-2012-0923

The RV20 codec in RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, does not properly handle the frame size array, which allows remote attackers to execute arbitrary code via a crafted RV20 RealVideo video stream...

CVE-2012-0926

The RV10 codec in RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, does not properly handle height and width values, which allows remote attackers to execute arbitrary code via a crafted RV10 RealVideo video stream...

CVE-2012-0925

Unspecified vulnerability in the RV40 codec in RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via a crafted RV40 RealVideo video stream...

CVE-2012-0925

RealPlayer RV40 remote code execution vulnerability (CVE-2012-0925) affects RealPlayer 11.x, 14.x, 15.x before 15.02.71 and RealPlayer SP 1.0–1.1.5. The flaw is in rv40.dll when parsing RV40 sample data, where a miscalculated offset can lead to arbitrary code execution. Exploitation requires a us...

CVE-2012-0926

The CVE-2012-0926 vulnerability affects RealNetworks RealPlayer: the RV10 RealVideo stream handling in RealPlayer 11.x, 14.x, 15.x (and RealPlayer SP 1.0–1.1.5) fails to validate height/width fields, allowing remote code execution via a crafted RV10 video. Root cause is miscalculation of an offse...

CVE-2012-0928

The ATRAC codec in RealNetworks RealPlayer 11.x and 14.x through 14.0.7, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer 12.x before 12.0.0.1703 does not properly decode samples, which allows remote attackers to execute arbitrary code via a crafted ATRAC audio file...

CVE-2012-0923

The RV20 codec in RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, does not properly handle the frame size array, which allows remote attackers to execute arbitrary code via a crafted RV20 RealVideo video stream...

CVE-2012-0928

The CVE-2012-0928 entry affects RealNetworks RealPlayer: ATRAC decoding in RealPlayer 11.x and 14.x up to 14.0.7, RealPlayer SP 1.0–1.1.5, and Mac RealPlayer 12.x prior to 12.0.0.1703. The vulnerability arises during ATRAC sample decoding, where faulty parsing of the audio data allows remote atta...

CVE-2012-0923

The CVE-2012-0923 entry corresponds to a RealPlayer RV20 RealVideo vulnerability. Connected sources provide concrete details: RealPlayer 11.x, 14.x and 15.x (before 15.02.71) and RealPlayer SP 1.0–1.1.5 are affected. The root cause is improper handling/bounds checking of a frame size array during...

ZDI-12-005 : Apple Quicktime RLE BGRA Decoding Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-005 : Apple Quicktime RLE BGRA Decoding Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-005 January 5, 2012 - -- CVE ID: CVE-2011-3248 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors: Appl...

RealNetworks RealPlayer RV20 Decoding Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks RealPlayer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way...

RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 (Windows)

This host is installed with RealPlayer which is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodrealplayermultvulnnov11win.nasl 7052 2017-09-04 11:50:51Z teissa $ RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 Windows Authors: Madhuri D Copyright: Copyright c...

RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 (Mac OS X)

This host is installed with RealPlayer which is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodrealplayermultvulnnov11macosx.nasl 7024 2017-08-30 11:51:43Z teissa $ RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 Mac OS X Authors: Madhuri D Copyright: Copyright...

RealNetworks RealPlayer Multiple Vulnerabilities (Nov 2011) - Windows

RealPlayer is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...