Lucene search
K

18 matches found

Cloud Foundry
Cloud Foundry
added 2022/07/28 12:0 a.m.56 views

USN-5472-1: FFmpeg vulnerabilities | Cloud Foundry

usn-5472-1 Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that FFmpeg would attempt to divide by zero when using Linear Predictive Coding LPC or AAC codecs. An attacker could possibly use this issue to cause a denial of service. This...

9.8CVSS8.9AI score0.31591EPSS
Exploits29Affected Software2
Tenable Nessus
Tenable Nessus
added 2022/06/09 12:0 a.m.103 views

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : FFmpeg vulnerabilities (USN-5472-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5472-1 advisory. It was discovered that FFmpeg would attempt to divide by zero when using Linear Predictive Coding LPC or AAC codecs. An attacker...

9.8CVSS7.4AI score0.31591EPSS
Exploits30References35
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2021-0495)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.0269EPSS
Exploits11References9
OpenVAS
OpenVAS
added 2021/11/08 12:0 a.m.40 views

Western Digital My Cloud Multiple Products 5.0 < 5.18.117 Multiple Vulnerabilities (WDC-21012)

Multiple Western Digital My Cloud products are prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progr...

9.8CVSS9.2AI score0.99999EPSS
Exploits33References4
OSV
OSV
added 2021/10/29 7:32 p.m.11 views

MGASA-2021-0495 Updated ffmpeg packages fix security vulnerability

FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/aacpsy.c, which allows a remote malicious user to cause a Denial of Service. CVE-2020-20446 FFmpeg 4.2 is affected by null pointer dereference passed as argument to libavformat/aviobuf.c, which could cause a Denial of Service...

9.8CVSS6.8AI score0.0269EPSS
Exploits11References8
OpenVAS
OpenVAS
added 2021/10/21 12:0 a.m.28 views

Debian: Security Advisory (DSA-4990-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.0269EPSS
Exploits28References4
Tenable Nessus
Tenable Nessus
added 2021/10/20 12:0 a.m.45 views

Debian DSA-4990-1 : ffmpeg - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-4990 advisory. - FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/lpc.h, which allows a remote malicious user to cause a Denial of Service. CVE-2020-20445 - FFmpe...

9.8CVSS7AI score0.0269EPSS
Exploits28References65
Debian
Debian
added 2021/10/19 6:51 p.m.36 views

[SECURITY] [DSA 4990-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4990-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 19, 2021 https://www.debian.org/security/faq -...

9.8CVSS9.2AI score0.0269EPSS
Exploits28
Tenable Nessus
Tenable Nessus
added 2021/08/23 12:0 a.m.31 views

Debian DLA-2742-1 : ffmpeg - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2742 advisory. - Buffer Overflow vulnerability exists in FFmpeg 4.1 via apngdoinverseblend in libavcodec/pngenc.c, which could let a remote malicious user cause a Denial of Servi...

8.8CVSS7.2AI score0.02468EPSS
Exploits12References33
Debian
Debian
added 2021/08/15 4:58 a.m.108 views

[SECURITY] [DLA 2742-1] ffmpeg security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2742-1 [email protected] https://www.debian.org/lts/security/ Anton Gladky August 14, 2021 https://wiki.debian.org/LTS -...

8.8CVSS8.6AI score0.02468EPSS
Exploits12
OpenVAS
OpenVAS
added 2021/07/15 12:0 a.m.23 views

openSUSE: Security Advisory for ffmpeg (openSUSE-SU-2021:2322-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.8AI score0.02468EPSS
Exploits20References2
Tenable Nessus
Tenable Nessus
added 2021/07/15 12:0 a.m.32 views

SUSE SLED15: ffmpeg / libavcodec-devel / libavcodec57 / libavdevice57 / etc (SUSE-SU-2021:2322-1)

The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2322-1 advisory. - CVE-2020-13904: Fixed use-after-free via a crafted EXTINF duration in an m3u8 file bsc1172640. - CVE-2020-21041: Fixed buffer overfl...

9.8CVSS7AI score0.02468EPSS
Exploits20References69
OSV
OSV
added 2021/05/26 5:15 p.m.23 views

CVE-2020-22015

Buffer Overflow vulnerability in FFmpeg 4.2 in movwritevideotag due to the out of bounds in libavformat/movenc.c, which could let a remote malicious user obtain sensitive information, cause a Denial of Service, or execute arbitrary code...

8.8CVSS7.3AI score
Exploits0References3
UbuntuCve
UbuntuCve
added 2021/05/26 5:15 p.m.24 views

CVE-2020-22015

Buffer Overflow vulnerability in FFmpeg 4.2 in movwritevideotag due to the out of bounds in libavformat/movenc.c, which could let a remote malicious user obtain sensitive information, cause a Denial of Service, or execute arbitrary code...

8.8CVSS6.9AI score0.02468EPSS
Exploits1References3
CVE
CVE
added 2021/05/26 4:25 p.m.187 views

CVE-2020-22015

CVE-2020-22015 is a Buffer Overflow in FFmpeg 4.2, triggered by an out-of-bounds condition in libavformat/movenc.c (mov_write_video_tag). The vulnerability could allow a remote attacker to obtain sensitive information, cause a Denial of Service, or execute arbitrary code. Connected advisories con...

8.8CVSS9.3AI score0.02468EPSS
Exploits1References3Affected Software1
AlpineLinux
AlpineLinux
added 2021/05/26 4:25 p.m.38 views

CVE-2020-22015

Buffer Overflow vulnerability in FFmpeg 4.2 in movwritevideotag due to the out of bounds in libavformat/movenc.c, which could let a remote malicious user obtain sensitive information, cause a Denial of Service, or execute arbitrary code...

8.8CVSS9.6AI score0.02468EPSS
Exploits1
Debian CVE
Debian CVE
added 2021/05/26 4:25 p.m.20 views

CVE-2020-22015

Buffer Overflow vulnerability in FFmpeg 4.2 in movwritevideotag due to the out of bounds in libavformat/movenc.c, which could let a remote malicious user obtain sensitive information, cause a Denial of Service, or execute arbitrary code...

8.8CVSS7AI score0.02468EPSS
Exploits1
Vaadin
Vaadin
added 2020/04/21 12:0 a.m.38 views

Potential sensitive data exposure in applications using Vaadin 15

Insecure configuration of default ObjectMapper in com.vaadin:flow-server versions 3.0.0 through 3.0.5 Vaadin 15.0.0 through 15.0.4 may expose sensitive data if the application also uses e.g. @RestController See CWE-200: Exposure of Sensitive Information to an Unauthorized Actor Description The...

6.5CVSS1AI score0.01001EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder