6118 matches found
DEBIAN-CVE-2025-22921
FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c...
UBUNTU-CVE-2025-22921
FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c...
CVE-2025-22921
FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c...
CVE-2025-22921
FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c...
[SECURITY] Fedora 41 Update: libheif-1.19.5-3.fc41
libheif is an ISO/IEC 23008-12:2017 HEIF and AVIF AV1 Image File Format file format decoder and encoder...
[SECURITY] Fedora 40 Update: libheif-1.19.5-3.fc40
libheif is an ISO/IEC 23008-12:2017 HEIF and AVIF AV1 Image File Format file format decoder and encoder...
SUSE CVE-2024-11403
There exists an out of bounds read/write in LibJXL versions prior to commit 9cc451b91b74ba470fd72bd48c121e9f33d24c99. The JPEG decoder used by the JPEG XL encoder when doing JPEG recompression i.e. if using JxlEncoderAddJPEGFrame on untrusted input does not properly check bounds in the presence o...
Updated ofono packages fix security vulnerabilities
Sms decoder stack-based buffer overflow remote code execution vulnerability within the decodedeliver function. CVE-2023-2794 Sms decoder stack-based buffer overflow remote code execution vulnerability within the decodestatusreport function. CVE-2023-4232 Sms decoder stack-based buffer overflow...
MGASA-2025-0063 Updated ofono packages fix security vulnerabilities
Sms decoder stack-based buffer overflow remote code execution vulnerability within the decodedeliver function. CVE-2023-2794 Sms decoder stack-based buffer overflow remote code execution vulnerability within the decodestatusreport function. CVE-2023-4232 Sms decoder stack-based buffer overflow...
ROS-20250212-07
Vulnerability of JxlEncoderAddJPEGFrame function of JPEG XL decoder of Libjxl library is related to operation outside of memory buffer boundaries. operation beyond the buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of...
Azure Linux 3.0 Security Update: kernel (CVE-2024-42313)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42313 advisory. - In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free in...
[SECURITY] Fedora 40 Update: jpegxl-0.8.4-1.fc40
This package contains a reference implementation of JPEG XL encoder and decoder...
CVE-2022-32540
Information Disclosure in Operator Client application in BVMS 10.1.1, 11.0 and 11.1.0 and VIDEOJET Decoder VJD-7513 versions 10.23 and 10.30 allows man-in-the-middle attacker to compromise confidential video stream. This is only applicable for UDP encryption when target system contains cameras wi...
mina-core: Apache MINA: applications using unbounded deserialization may allow RCE
A flaw was found in Apache MINA. The ObjectSerializationDecoder in Apache MINA uses Java’s native deserialization protocol to process incoming serialized data but lacks the necessary security checks and defenses. This vulnerability allows attackers to exploit the deserialization process by sendin...
CVE-2024-21463
Memory corruption while processing Codec2 during v13k decoder pitch synthesis...
CLSA-2025-1738693764 squid: Fix of CVE-2024-25111
CVE-2024-25111: Fix uncontrolled recursion bug in HTTP Chunked decoder to prevent DoS attack...
The vulnerability of the CAF decoder in the FFmpeg multimedia library allows a hacker to induce a service failure.
The vulnerability of the CAF decoder in the FFmpeg multimedia library is related to a numerical overflow condition. Exploiting this vulnerability can allow an attacker to cause a service failure...
[SECURITY] Fedora 41 Update: jpegxl-0.10.4-1.fc41
This package contains a reference implementation of JPEG XL encoder and decoder...
cxl/port: Fix use-after-free, permit out-of-order decoder shutdown
...
Security Bulletin: IBM DataPower Operator vulnerable to DoS due to use of Go (CVE-2024-34155, CVE-2024-34156)
Summary The affected calls are used by DataPower Operator for processing messages exchanged with Kubernetes and IBM DataPower Gateway. Vulnerability Details CVEID:CVE-2024-34156 DESCRIPTION: Golang Go is vulnerable to a denial of service, caused by a stack exhaustion in Decoder.Decode. By sending...