Ubuntu 16.04 ESM : LibASS vulnerabilities (USN-4797-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4797-1 advisory. It was discovered that LibASS incorrectly handled certain ASS files. A remote attacker could possibly use this issue to cause a denial of service. One of...

Debian: Security Advisory (DLA-668-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2016-7972

The checkallocations function in libass/assshaper.c in libass before 0.13.4 allows remote attackers to cause a denial of service memory allocation failure via unspecified vectors...

Ubuntu: Security Advisory (USN-4797-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-4797-1: LibASS vulnerabilities

It was discovered that LibASS incorrectly handled certain ASS files. A remote attacker could possibly use this issue to cause a denial of service. One of the issues, CVE-2016-7970, only affected Ubuntu 16.04 ESM. CVE-2016-7969, CVE-2016-7970, CVE-2016-7972 It was discovered that LibASS incorrectl...

SUSE: Security Advisory (SUSE-SU-2016:3107-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2016-7972

The checkallocations function in libass/assshaper.c in libass before 0.13.4 allows remote attackers to cause a denial of service memory allocation failure via unspecified vectors...

CVE-2016-7972

CVE-2016-7972 affects libass prior to 0.13.4. The vulnerability is in check_allocations (libass/ass_shaper.c) and can allow a remote attacker to cause a denial of service via a memory allocation failure. Remediation: upgrade to libass 0.13.4 or later (per multiple advisories: Gentoo GLSA-201702-2...

CVE-2016-7972

The checkallocations function in libass/assshaper.c in libass before 0.13.4 allows remote attackers to cause a denial of service memory allocation failure via unspecified vectors...

CVE-2016-7972

The checkallocations function in libass/assshaper.c in libass before 0.13.4 allows remote attackers to cause a denial of service memory allocation failure via unspecified vectors...

SUSE-SU-2016:3107-1 Security update for libass

This update for libass fixes the following issues: CVE-2016-7969, CVE-2016-7970, CVE-2016-7971, CVE-2016-7972: Fixed multiple memory allocation issues found by fuzzing bsc1002982...

openSUSE Security Update : libass (openSUSE-2016-1442)

This update for libass fixes the following issues : - Fixed situations that could cause uninitialised memory to be used, leading to undefined behaviour. boo1002982, CVE-2016-7969, CVE-2016-7972 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

Fedora Update for libass FEDORA-2016-d2a05a0644

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for libass FEDORA-2016-282507c3e9

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 23 : libass (2016-95407a836f)

The remote Fedora 23 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2016-95407a836f advisory. Fixes CVE-2016-7969, CVE-2016-7970 and CVE-2016-7972 ---- Update to 0.13.3. Contains various bugfixes. Tenable has extracted the preceding descripti...

Fedora 24 : libass (2016-282507c3e9)

The remote Fedora 24 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2016-282507c3e9 advisory. Fixes CVE-2016-7969, CVE-2016-7970 and CVE-2016-7972 ---- Update to 0.13.3. Contains various bugfixes. Tenable has extracted the preceding descripti...

[SECURITY] [DLA 668-1] libass security update

Package : libass Version : 0.10.0-3+deb7u1 CVE ID : CVE-2016-7969 CVE-2016-7972 Several vulnerabilities were discovered in libass, a library for manipulating the SubStation Alpha SSA subtitle file format. The Common Vulnerabilities and Exposures project identifies the following issues...