UBUNTU-CVE-2022-3965

A vulnerability classified as problematic was found in ffmpeg. This vulnerability affects the function smcencodestream of the file libavcodec/smcenc.c of the component QuickTime Graphics Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. The attack can be initiated...

CVE-2022-3964 ffmpeg QuickTime RPZA Video Encoder rpzaenc.c out-of-bounds

A vulnerability classified as problematic has been found in ffmpeg. This affects an unknown part of the file libavcodec/rpzaenc.c of the component QuickTime RPZA Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. It is possible to initiate the attack remotely. The...

FFmpeg 缓冲区错误漏洞

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in FFmpeg, which originates from an unknown function in the file ibavcodec/rpzaenc.c of the QuickTime RPZA Video Encoder component, which can be exploited by...

FFmpeg 缓冲区错误漏洞

FFmpeg, the FFmpeg team's complete solution for recording, converting, and streaming audio and video, suffers from a security vulnerability stemming from an unknown function in the file ibavcodec/rpzaenc.c of the QuickTime RPZA Video Encoder component, which could be exploited by an attacker to...

CVE-2022-3965 ffmpeg QuickTime Graphics Video Encoder smcenc.c smc_encode_stream out-of-bounds

A vulnerability classified as problematic was found in ffmpeg. This vulnerability affects the function smcencodestream of the file libavcodec/smcenc.c of the component QuickTime Graphics Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. The attack can be initiated...

CVE-2022-3965

FFmpeg CVE-2022-3965 affects the QuickTime Graphics Video Encoder (libavcodec/smcenc.c: smc_encode_stream). Manipulating y_size causes an out-of-bounds read; the attack is described as remote. Patch reference: 13c13109759090b7f7182480d075e13b36ed8edd (VDB-213544) with a remediation recommendation...

CVE-2022-3964

CVE-2022-3964 affects FFmpeg: a flaw in the QuickTime RPZA Video Encoder, specifically in libavcodec/rpzaenc.c where manipulating the argument y_size causes an out‑of‑bounds read. The issue can be triggered remotely. The patch identified is 92f9b28ed84a77138105475beba16c146bdaf984. The vulnerabil...

CVE-2022-3964

A vulnerability classified as problematic has been found in ffmpeg. This affects an unknown part of the file libavcodec/rpzaenc.c of the component QuickTime RPZA Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. It is possible to initiate the attack remotely. The...

CVE-2022-3965

A vulnerability classified as problematic was found in ffmpeg. This vulnerability affects the function smcencodestream of the file libavcodec/smcenc.c of the component QuickTime Graphics Video Encoder. The manipulation of the argument ysize leads to out-of-bounds read. The attack can be initiated...

PT-2022-36738 · Oracle · Java

Name of the Vulnerable Software and Affected Versions: java versions affected versions not specified Description: A security exception occurs due to a crash in the org.codehaus.janino.Parser.parseAssignmentExpression function, which is related to the java.base/sun.nio.cs.CESU 8$Encoder.encodeLoop...

Cross site scripting

An error in the URL handler of the VIDEOJET multi 4000 may lead to a reflected cross site scripting XSS in the web-based interface. An attacker with knowledge of the encoder address can send a crafted link to a user, which will execute JavaScript code in the context of the user...

Exploit for Code Injection in Apache Commons_Text

CVE-2022-42889 PoC Test Application This is a vulnerable appli...

PT-2022-36693 · Oracle · Java.Base

Name of the Vulnerable Software and Affected Versions: java.base affected versions not specified Description: The issue is related to a security exception in the org.codehaus.janino.Parser.parseAssignmentExpression function. It involves the java.base/java.nio.charset.CharsetEncoder class...

PT-2022-37310 · Oracle · Java

Name of the Vulnerable Software and Affected Versions: java versions affected versions not specified Description: The issue is related to a security exception. Technical details about the crash include the Parser.parseConditionalExpression function and the CESU 8$Encoder.encodeLoop method in...

Adobe Media Encoder Arbitrary Code Execution Vulnerability (APSB20-10) - Windows

Adobe Media Encoder is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

GSD-2022-1005642 drm/meson: Fix refcount leak in meson_encoder_hdmi_init

drm/meson: Fix refcount leak in mesonencoderhdmiinit This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...

GSD-2022-1005534 drm/amd/display: Check correct bounds for stream encoder instances for DCN303

drm/amd/display: Check correct bounds for stream encoder instances for DCN303 This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.63 by commit...

PT-2022-33897 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions 5.15.33 through 5.15.60 Description: A refcount leak was discovered in the meson encoder hdmi init function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions...

acuity (=6.18.0), acuitypro (=6.18.0) +60 more potentially affected by CVE-2022-35974 via tensorflow (>=2.8.0 <=2.8.0rc1)

tensorflow PYPI version =2.8.0, =1.2.8, =1.0.43, =0.2.2, =0.0.1, =0.0.2, =0.2.8, =0.14.0, =0.1.3, =0.0.9, =0.2.27, =0.2.41 - complaintclassify =0.0.5 - conversational-sentence-encoder =0.0.6 and more Source cves: CVE-2022-35974 Source advisory: OSV:GHSA-VGVH-2PF4-JR2X...

acuity (=6.18.0), acuitypro (=6.18.0) +60 more potentially affected by CVE-2022-35972 via tensorflow (>=2.8.0 <=2.8.0rc1)

tensorflow PYPI version =2.8.0, =1.2.8, =1.0.43, =0.2.2, =0.0.1, =0.0.2, =0.2.8, =0.14.0, =0.1.3, =0.0.9, =0.2.27, =0.2.41 - complaintclassify =0.0.5 - conversational-sentence-encoder =0.0.6 and more Source cves: CVE-2022-35972 Source advisory: OSV:GHSA-4PC4-M9MJ-V2R9...