1284 matches found
GSD-2022-1001869 ASoC: codecs: wcd934x: Add missing of_node_put() in wcd934x_codec_parse_data
ASoC: codecs: wcd934x: Add missing ofnodeput in wcd934xcodecparsedata This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.33 by commit...
GSD-2022-1001570 ASoC: codecs: rx-macro: fix accessing array out of bounds for enum type
ASoC: codecs: rx-macro: fix accessing array out of bounds for enum type This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.19 by commit...
GSD-2022-1001569 ASoC: codecs: wc938x: fix accessing array out of bounds for enum type
ASoC: codecs: wc938x: fix accessing array out of bounds for enum type This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.19 by commit...
GSD-2022-1001558 ASoC: codecs: wcd934x: Add missing of_node_put() in wcd934x_codec_parse_data
ASoC: codecs: wcd934x: Add missing ofnodeput in wcd934xcodecparsedata This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.19 by commit...
GSD-2022-1001264 ASoC: codecs: rx-macro: fix accessing array out of bounds for enum type
ASoC: codecs: rx-macro: fix accessing array out of bounds for enum type This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.2 by commit...
GSD-2022-1001263 ASoC: codecs: va-macro: fix accessing array out of bounds for enum type
ASoC: codecs: va-macro: fix accessing array out of bounds for enum type This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.2 by commit...
GSD-2022-1001262 ASoC: codecs: rx-macro: fix accessing compander for aux
ASoC: codecs: rx-macro: fix accessing compander for aux This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.2 by commit...
GSD-2022-1001260 ASoC: codecs: wc938x: fix accessing array out of bounds for enum type
ASoC: codecs: wc938x: fix accessing array out of bounds for enum type This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.2 by commit...
Google Android Buffer Overflow Vulnerability (CNVD-2022-31836)
Google Android is a Linux-based open source operating system from Google. Google Android suffers from a buffer overflow vulnerability that originates from too much data in Media Framework Media Codecs. A remote attacker could exploit the vulnerability to access sensitive information...
Microsoft Windows Codecs Library 输入验证错误漏洞
Microsoft HEVC Video Extensions is a video extension application from Microsoft USA. The application enables computers and devices to read High Efficiency Video Coding or HEVC videos. A remote code execution vulnerability exists in Microsoft HEVC Video Extensions, which can be exploited by an...
Google Android 资源管理错误漏洞
Google Android is a Linux-based open source operating system from Google. Google Android suffers from a buffer overflow vulnerability that originates from too much data in Media Framework Media Codecs. A remote attacker could exploit the vulnerability to access sensitive information...
Patch Tuesday - March 2022
Microsoft's March 2022 updates include fixes for 92 CVEs including 21 from the Chromium project, which is used by their Edge web browser. None of them have been seen exploited in the wild, but three have been previously disclosed. CVE-2022-24512, affecting .NET and Visual Studio, and...
Microsoft Windows Codecs Library Multiple Vulnerabilities (March 2022)
The Windows 'HEVC Video Extensions' or 'HEVC from Device Manufacturer' app installed on the remote host is affected by multiple code execution vulnerabilities. An attacker who successfully exploits these vulnerabilities could execute arbitrary code. Exploitation of the vulnerability requires that...
GSD-2022-1000677 ASoC: codecs: wcd938x: fix incorrect used of portid
ASoC: codecs: wcd938x: fix incorrect used of portid This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.8 by commit...
GSD-2022-1000590 ASoC: codecs: wcd938x: fix incorrect used of portid
ASoC: codecs: wcd938x: fix incorrect used of portid This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.22 by commit...
Microsoft Windows Codecs Library 代码注入漏洞
Microsoft HEVC Video Extensions is a video extension application from Microsoft Corporation USA. The application enables computers and devices to read High Efficiency Video Encoding or HEVC video. Microsoft HEVC Video Extensions has a remote code execution vulnerability and no details of the...
Microsoft Windows Codecs Library 代码注入漏洞
Microsoft VP9 Video Extensions is a popular video codec from Microsoft Corporation USA used for streaming over the Internet. Microsoft VP9 Video Extensions is vulnerable to remote code execution, and no details of the vulnerability are available...
Microsoft Windows Codecs Library 缓冲区错误漏洞
Microsoft HEVC Video Extensions is a video extension application from Microsoft Corporation USA. The application enables computers and devices to read High Efficiency Video Encoding or HEVC video. Microsoft HEVC Video Extensions has a remote code execution vulnerability and no details of the...
Microsoft Windows Codecs Library 代码注入漏洞
Microsoft HEVC Video Extensions is a video extension application from Microsoft Corporation USA. The application enables computers and devices to read High Efficiency Video Encoding or HEVC video. Microsoft HEVC Video Extensions has a remote code execution vulnerability and no details of the...
Microsoft Windows Codecs Library RCE (January 2022)
The Windows 'HEVC Video Extensions' or 'HEVC from Device Manufacturer' app installed on the remote host is affected by a remote code execution vulnerability. An attacker who successfully exploited the vulnerability could execute arbitrary code. Exploitation of the vulnerability requires that a...