CVE-2011-4352

Integer overflow in the vp3dequant function in the VP3 decoder vp3.c in libavcodec in FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0.7.x before 0.7.9, and 0.8.x before 0.8.8; and in Libav 0.5.x before 0.5.6, 0.6.x before 0.6.4, and 0.7.x before 0.7.3 allows remote attackers to cause a denial of...

CVE-2011-4352

CVE-2011-4352 describes an integer overflow in the VP3 decoder’s vp3_dequant() in FFmpeg/libavcodec (and Libav) that can be triggered by a crafted VP3 stream, potentially causing a crash or remote code execution. Affected versions: FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0.7.x before 0.7.9...

CVE-2011-4579

The svq1decodeframe function in the SVQ1 decoder svq1dec.c in libavcodec in FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0.7.x before 0.7.9, and 0.8.x before 0.8.8; and in Libav 0.5.x before 0.5.6, 0.6.x before 0.6.4, and 0.7.x before 0.7.3 allows remote attackers to cause a denial of service...

CVE-2012-0857

Multiple buffer overflows in the getqcx function in the J2K decoder j2kdec.c in libavcode in FFmpeg before 0.9.1 allow remote attackers to cause a denial of service application crash via unspecified vectors...

CVE-2012-0857

Multiple buffer overflows in the getqcx function in the J2K decoder j2kdec.c in libavcode in FFmpeg before 0.9.1 allow remote attackers to cause a denial of service application crash via unspecified vectors...

Buffer overflow

Multiple buffer overflows in the getqcx function in the J2K decoder j2kdec.c in libavcode in FFmpeg before 0.9.1 allow remote attackers to cause a denial of service application crash via unspecified vectors...

CVE-2012-0857

Multiple buffer overflows in the getqcx function in the J2K decoder j2kdec.c in libavcode in FFmpeg before 0.9.1 allow remote attackers to cause a denial of service application crash via unspecified vectors...

CVE-2012-0857

Multiple buffer overflows in the getqcx function in the J2K decoder j2kdec.c in libavcode in FFmpeg before 0.9.1 allow remote attackers to cause a denial of service application crash via unspecified vectors...

CVE-2012-0857

FFmpeg before 0.9.1 is affected by CVE-2012-0857 due to multiple buffer overflows in the get_qcx function (j2kdec.c) of the libavcodec library, enabling remote attackers to cause an application crash (denial of service). The vulnerability is triggered by unspecified vectors. The provided document...

David Koblas' GIF decoder LZW decoder buffer overflow

The LZW decompressor in the LWZReadByte function in giftoppm.c in the David Koblas GIF decoder in PBMPLUS, as used in the gifreadlzw function in filter/image-gif.c in CUPS before 1.4.7, the LZWReadByte function in plug-ins/common/file-gif-load.c in GIMP 2.6.11 and earlier, the LZWReadByte functio...

David Koblas' GIF decoder LZW decoder buffer overflow

The LZW decompressor in the LWZReadByte function in giftoppm.c in the David Koblas GIF decoder in PBMPLUS, as used in the gifreadlzw function in filter/image-gif.c in CUPS before 1.4.7, the LZWReadByte function in plug-ins/common/file-gif-load.c in GIMP 2.6.11 and earlier, the LZWReadByte functio...

USN-1540-1: NSS vulnerability

Kaspar Brand discovered a vulnerability in how the Network Security Services NSS ASN.1 decoder handles zero length items. If the user were tricked into opening a specially crafted certificate, an attacker could possibly exploit this to cause a denial of service via application crash...

CVE-2012-2135

The utf-16 decoder in Python 3.1 through 3.3 does not update the alignedend variable after calling the unicodedecodecallerrorhandler function, which allows remote attackers to obtain sensitive information process memory or cause a denial of service memory corruption and crash via unspecified...

PSF-2012-6 Vulnerability in the utf-16 decoder after error handling

The utf-16 decoder in Python 3.1 through 3.3 does not update the alignedend variable after calling the unicodedecodecallerrorhandler function, which allows remote attackers to obtain sensitive information process memory or cause a denial of service memory corruption and crash via unspecified...

CVE-2012-2135

The CVE-2012-2135 entry describes a vulnerability in the utf-16 decoder in Python v3.1–v3.3 where aligned_end is not updated after unicode_decode_call_errorhandler, allowing a remote attacker to potentially read process memory or cause a DoS via memory corruption. Connected documents corroborate ...

CVE-2012-2135

The utf-16 decoder in Python 3.1 through 3.3 does not update the alignedend variable after calling the unicodedecodecallerrorhandler function, which allows remote attackers to obtain sensitive information process memory or cause a denial of service memory corruption and crash via unspecified...

Debian: Security Advisory (DSA-2494-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 2490-1 (nss)

The remote host is missing an update to nss announced via advisory DSA 2490-1. OpenVAS Vulnerability Test $Id: deb24901.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2490-1 nss Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

Debian: Security Advisory (DSA-2490-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Google Chrome Multiple Vulnerabilities (Aug 2012) - Mac OS X

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...