6107 matches found
ALPINE-CVE-2017-14223
In libavformat/asfdecf.c in FFmpeg 3.3.3, a DoS in asfbuildsimpleindex due to lack of an EOF End of File check might cause huge CPU consumption. When a crafted ASF file, which claims a large "ict" field in the header but does not contain sufficient backing data, is provided, the for loop would...
UBUNTU-CVE-2017-14223
In libavformat/asfdecf.c in FFmpeg 3.3.3, a DoS in asfbuildsimpleindex due to lack of an EOF End of File check might cause huge CPU consumption. When a crafted ASF file, which claims a large "ict" field in the header but does not contain sufficient backing data, is provided, the for loop would...
Denial of Service Vulnerability in Storm Video 5
Storm Video 5 is the video playback software of Beijing Storm Technology Co. Storm Video 5 decoder has a denial of service vulnerability when decoding special mp4 files, which can be exploited by attackers to cause the software to crash, resulting in a denial of service...
Memory Override Access Vulnerability in Xunlei Look Client
Xunlei Look client is Xunlei's video playback software. A memory override access vulnerability exists in the Xunlei Look client's decoder when decoding special mp4 files. An attacker could exploit this vulnerability to cause a denial of service...
Memory Override Vulnerability in Sohu Video 5
Sohu Video 5 is Sohu's video playback software for PC. A memory override vulnerability exists in Sohu Video 5's decoder when decoding special mp4 files. An attacker exploited the vulnerability to cause the software to crash, resulting in a denial of service...
Debian DSA-3957-1 : ffmpeg - security update
Several vulnerabilities have been discovered in FFmpeg, a multimedia player, server and encoder. These issues could lead to Denial-of-Service and, in some situation, the execution of arbitrary code. - CVE-2017-9608 Yihan Lian of Qihoo 360 GearTeam discovered a NULL pointer access when parsing a...
librawspeed: Index-out-of-bounds in std::__1::array<rawspeed::HuffmanTable*, 2> rawspeed::AbstractLJpegDecompressor:
Detailed report: https://oss-fuzz.com/testcase?key=6130578116050944 Project: librawspeed Fuzzer: libFuzzerlibrawspeedFiffParserFuzzer-GetDecoder-Decode Fuzz target binary: FiffParserFuzzer-GetDecoder-Decode Job Type: libfuzzerubsanlibrawspeeduntrusted Platform Id: linux Crash Type:...
Vulnerability in the Android operating system’s media framework (H263 decoder), allowing a perpetrator to execute arbitrary code
The vulnerability in the Android operating system’s media framework H263 decoder is related to lack of access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
Vulnerability in the MPEG-2 decoder of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability in the MPEG-2 decoder of the Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
Vulnerability in the multimedia framework (AVC decoder) of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability in the multimedia framework AVC decoder of the Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
Vulnerability in the MPEG-2 decoder of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability in the MPEG-2 decoder of the Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
DEBIAN-CVE-2017-12863
In opencv/modules/imgcodecs/src/grfmtpxm.cpp, function PxMDecoder::readData has an integer overflow when calculate srcpitch. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier...
Android Media framework mpeg2 decoder remote code execution vulnerability
Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA, and Media framework mpeg2 decoder is one of the mpeg2 decoders used for multimedia development. A remote code execution vulnerability exists in the Media framework mpeg2 decoder in...
Android Media framework mpeg2 decoder remote code execution vulnerability (CNVD-2017-23433)
Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA.Media framework mpeg2 decoder is one of the mpeg2 decoders for multimedia development. A remote code execution vulnerability exists in Media framework mpeg2 decoder in Android. A...
Android Media framework h263 decoder remote code execution vulnerability (CNVD-2017-23435)
Android is a set of Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA. media framework h263 decoder is one of the frameworks used for multimedia development. A remote code execution vulnerability exists in Media framework h263 decoder in Androi...
Android Media framework h264 decoder denial of service vulnerability
Android is a set of Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA for short. media framework h264 decoder is one of the h264 decoder for multimedia development. A denial of service vulnerability exists in Media framework h264 decoder in...
Android Media framework hevc decoder denial of service vulnerability
Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA.Media framework hevc decoder is one of the hevc decoders for multimedia development. A denial of service vulnerability exists in Media framework hevc decoder in Android. An attacker...
Android Media framework h263 decoder remote code execution vulnerability
Android is a set of Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA. media framework h263 decoder is one of the frameworks used for multimedia development. A remote code execution vulnerability exists in Media framework h263 decoder in Androi...
CVE-2017-0745
A remote code execution vulnerability in the Android media framework avc decoder. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37079296...
CVE-2017-0745
A remote code execution vulnerability in the Android media framework avc decoder. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37079296...