Mageia: Security Advisory (MGASA-2017-0084)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2017:1986-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED12 / SLES12 Security Update : libquicktime (SUSE-SU-2017:1986-1)

This update for libquicktime fixes the following issues: Security issue fixed : - CVE-2016-2399: Adjust patch to prevent endless loop when there are less than 256 bytes to read. bsc1022805 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE...

SUSE-SU-2017:1986-1 Security update for libquicktime

This update for libquicktime fixes the following issues: Security issue fixed: - CVE-2016-2399: Adjust patch to prevent endless loop when there are less than 256 bytes to read. bsc1022805...

SUSE SLED12 / SLES12 Security Update : libquicktime (SUSE-SU-2017:0610-1)

This update for libquicktime fixes the following issues : - A crafted MP4 file could have caused libquicktime to crash or lead to undefined behaviour bsc1022805, CVE-2016-2399 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory...

Debian DSA-3800-1 : libquicktime - security update

Marco Romano discovered that libquicktime, a library for reading and writing QuickTime files, was vulnerable to an integer overflow attack. When opened, a specially crafted MP4 file would cause a denial of service by crashing the application. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. T...

[SECURITY] [DSA 3800-1] libquicktime security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3800-1 [email protected] https://www.debian.org/security/ Sebastien Delafond March 02, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DLA 844-1] libquicktime security update

Package : libquicktime Version : 2:1.2.4-3+deb7u1 CVE ID : CVE-2016-2399 Debian Bug : 855099 Marco nemux Romano discovered that an integer overflow in the quicktimereadpascal function in libquicktime 1.2.4 and earlier allows remote attackers to cause a denial of service or possibly have other...

CVE-2016-2399

Integer overflow in the quicktimereadpascal function in libquicktime 1.2.4 and earlier allows remote attackers to cause a denial of service or possibly have other unspecified impact via a crafted hdlr MP4 atom...

CVE-2016-2399

libquicktime (CVE-2016-2399) is affected up to version 1.2.4, where an integer overflow in the quicktime_read_pascal function can be triggered by a crafted MP4 file’s hdlr atom, allowing remote denial of service and possibly other impact. Public advisories and patches exist across multiple distro...

libquicktime 1.2.4 - Integer Overflow

!/usr/bin/env python - 7 February 2016 - My last bug hunting session for fun and no-profit has been dedicated to libquicktime Author: Marco Romano - @nemux http://www.nemux.org libquicktime 1.2.4 Integer Overflow Product Page: http://libquicktime.sourceforge.net/ Description: 'hdlr', 'stsd', 'fta...

libquicktime 1.2.4 Integer Overflow

!/usr/bin/env python - 7 February 2016 - My last bug hunting session for fun and no-profit has been dedicated to libquicktime Author: Marco Romano - @nemux http://www.nemux.org libquicktime 1.2.4 Integer Overflow Product Page: http://libquicktime.sourceforge.net/ Description: 'hdlr', 'stsd', 'fta...