Lucene search
K

31 matches found

OSV
OSV
added 2026/03/22 12:57 p.m.2 views

ROOT-OS-ALPINE-318-CVE-2024-1580 CVE-2024-1580 in rootio-dav1d - Patched by Root

Root has patched CVE-2024-1580 in the rootio-dav1d package for Root:Alpine:3.18. Multiple fixed versions available...

8.8CVSS5.4AI score0.01835EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 4: dav1d (TSSA-2024:0971)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0971 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

8.8CVSS6.7AI score0.01835EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/02/25 12:0 a.m.4 views

openSUSE Security Advisory (SUSE-SU-2024:0964-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.2AI score0.01835EPSS
Exploits0References4
GoogleProjectZero
GoogleProjectZero
added 2024/10/03 12:0 a.m.28 views

Effective Fuzzing: A Dav1d Case Study

Guest post by Nick Galloway, Senior Security Engineer, 20% time on Project Zero Late in 2023, while working on a 20% project with Project Zero, I found an integer overflow in the dav1d AV1 video decoder. That integer overflow leads to an out-of-bounds write to memory. Dav1d 1.4.0 patched this, an...

8.8CVSS8.1AI score0.01835EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/05/10 12:0 a.m.17 views

Debian: Security Advisory (DSA-5686-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.2AI score0.01835EPSS
Exploits0References2
Debian
Debian
added 2024/05/09 2:46 p.m.23 views

[SECURITY] [DSA 5686-1] dav1d security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5686-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 09, 2024 https://www.debian.org/security/faq -...

8.8CVSS6.1AI score0.01835EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/05/09 12:0 a.m.23 views

Debian dsa-5686 : dav1d - security update

The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5686 advisory. - An integer overflow in dav1d AV1 decoder that can occur when decoding videos with large frame size. This can lead to memory corruption within the AV1 decoder. We...

8.8CVSS6.7AI score0.01835EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/04/29 12:0 a.m.20 views

Fedora 40 : dav1d (2024-12fcc689ac)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-12fcc689ac advisory. Update to version 1.4.0. This version addresses CVE-2024-1580 see RHBZ2264939. Tenable has extracted the preceding description block directly from the Fedora...

8.8CVSS6.6AI score0.01835EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2024/04/16 12:0 a.m.35 views

electron{27,28,29} -- multiple vulnerabilities

Electron develpers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2024-3515. Security: backported fix for CVE-2024-3516. Security: backported fix for CVE-2024-3157. Security: backported fix for CVE-2024-1580...

9.6CVSS7.4AI score0.01835EPSS
Exploits3References4
Mageia
Mageia
added 2024/04/05 10:26 p.m.39 views

Updated dav1d packages fix security vulnerability

An integer overflow in dav1d AV1 decoder that can occur when decoding videos with large frame size. This can lead to memory corruption within the AV1 decoder. CVE-2024-1580...

8.8CVSS7.7AI score0.01835EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2024/04/05 3:42 p.m.5 views

emulsion (>=6.0.0 <=10.0.0), libavif-sys (>=0.8.0 <=0.15.0) +1 more potentially affected by CVE-2024-1580 via libdav1d-sys (>=0.2.0 <=0.6.0)

libdav1d-sys CARGO version =0.2.0, =6.0.0, =0.8.0, =0.9.4, =0.10.1 Source cves: CVE-2024-1580 Source advisory: OSV:GHSA-MC39-H54G-PVW6...

8.8CVSS6.5AI score0.01835EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/03/28 12:0 a.m.18 views

Apple Mac OS X Security Update (HT214095)

Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.01835EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/03/28 12:0 a.m.19 views

Apple Mac OS X Security Update (HT214096)

Apple Mac OS X is prone to an out-of-bounds write vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.01835EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/03/25 12:0 a.m.31 views

macOS 14.x < 14.4.1 (HT214096)

The remote host is running a version of macOS / Mac OS X that is 14.x prior to 14.4.1. It is, therefore, affected by a vulnerability: - An integer overflow in dav1d AV1 decoder that can occur when decoding videos with large frame size. This can lead to memory corruption within the AV1 decoder. We...

8.8CVSS6.7AI score0.01835EPSS
Exploits0References2
Apple
Apple
added 2024/03/25 12:0 a.m.889 views

About the security content of Safari 17.4.1

About the security content of Safari 17.4.1 This document describes the security content of Safari 17.4.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...

8.8CVSS6.8AI score0.01835EPSS
Exploits0References1Affected Software1
Apple
Apple
added 2024/03/25 12:0 a.m.25 views

About the security content of macOS Ventura 13.6.6

About the security content of macOS Ventura 13.6.6 This document describes the security content of macOS Ventura 13.6.6. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or...

8.8CVSS6.8AI score0.01835EPSS
Exploits0References1Affected Software1
Apple
Apple
added 2024/03/25 12:0 a.m.96 views

About the security content of macOS Sonoma 14.4.1

About the security content of macOS Sonoma 14.4.1 This document describes the security content of macOS Sonoma 14.4.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or release...

8.8CVSS6.8AI score0.01835EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/03/25 12:0 a.m.32 views

macOS 13.x < 13.6.6 (HT214095)

The remote host is running a version of macOS / Mac OS X that is 13.x prior to 13.6.6. It is, therefore, affected by a vulnerability: - An integer overflow in dav1d AV1 decoder that can occur when decoding videos with large frame size. This can lead to memory corruption within the AV1 decoder. We...

8.8CVSS6.7AI score0.01835EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/03/23 12:0 a.m.21 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : dav1d (SUSE-SU-2024:0964-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:0964-1 advisory. - CVE-2024-1580: Fixed tilestartoff calculations for extremely large frame sizes bsc1220100. Tenable has...

8.8CVSS6.6AI score0.01835EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/03/23 12:0 a.m.24 views

SUSE SLED15 / SLES15 Security Update : dav1d (SUSE-SU-2024:0963-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2024:0963-1 advisory. - CVE-2024-1580: Fixed tilestartoff calculations for extremely large frame sizes bsc1220100. Tenable has extracted the...

8.8CVSS6.6AI score0.01835EPSS
Exploits0References4
Rows per page
Query Builder