32 matches found
PT-2026-47120
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=516422427 Crash type: Heap-buffer-overflow READ 1 Crash state: ihevcd sao shift ctb ihevcd process ihevcd parse slice data...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: Media: MediTech: vcodec – Fixed an oops when HEVC initialization fails. The stateless HEVC decoder saves the instance pointer in the context, regardless of whether the initialization succeeded or not. This caused a...
EUVD-2017-1082
Malware in sbrugna...
EUVD-2022-35703
Malicious code in bioql PyPI...
CVE-2022-32637
In hevc decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07491374; Issue ID: ALPS07491374...
The vulnerability of the hevc_frame_end function (libavcodec/hevcdec.c) in the FFmpeg multimedia library allows a hacker to disclose protected information.
The vulnerability of the hevcframeend function in the FFmpeg multimedia library libavcodec/hevcdec.c relates to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to disclose protected information...
CVE-2024-35921
A vulnerability was found in the Linux kernel's MediaTek vdechevcreqmultiif.c driver in the vdechevcsliceinit function, where a lack of proper checking can lead to a use-after-free scenario. This issue occurs when the stateless HEVC decoder saves the instance pointer in the context without checki...
CVE-2024-35921
In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Fix oops when HEVC init fails The stateless HEVC decoder saves the instance pointer in the context regardless if the initialization worked or not. This caused a use after free, when the pointer is freed i...
DEBIAN-CVE-2024-35921
In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Fix oops when HEVC init fails The stateless HEVC decoder saves the instance pointer in the context regardless if the initialization worked or not. This caused a use after free, when the pointer is freed i...
CVE-2024-35921
In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Fix oops when HEVC init fails The stateless HEVC decoder saves the instance pointer in the context regardless if the initialization worked or not. This caused a use after free, when the pointer is freed i...
CVE-2024-35921
In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Fix oops when HEVC init fails The stateless HEVC decoder saves the instance pointer in the context regardless if the initialization worked or not. This caused a use after free, when the pointer is freed i...
CVE-2024-35921 media: mediatek: vcodec: Fix oops when HEVC init fails
In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Fix oops when HEVC init fails The stateless HEVC decoder saves the instance pointer in the context regardless if the initialization worked or not. This caused a use after free, when the pointer is freed i...
CVE-2022-32637
In hevc decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07491374; Issue ID: ALPS07491374...
CVE-2022-32637
In hevc decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07491374; Issue ID: ALPS07491374...
Out-of-bounds
In hevc decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07491374; Issue ID: ALPS07491374...
PT-2023-13091 · Unknown · Hevc Decoder
Name of the Vulnerable Software and Affected Versions: hevc decoder affected versions not specified Description: The issue is related to a missing bounds check in the hevc decoder, which could lead to a possible out of bounds write. This could result in local escalation of privilege, with System...
CVE-2022-32637
CVE-2022-32637 affects the hevc decoder (MediaTek components) with a missing bounds check causing an out-of-bounds write. This can enable local privilege escalation to System level with no user interaction required. The patch identified is ALPS07491374 (Issue ID ALPS07491374). Exploitation detail...
CVE-2022-32637
In hevc decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07491374; Issue ID: ALPS07491374...
CVE-2022-32637
In hevc decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07491374; Issue ID: ALPS07491374...
MediaTek 芯片 缓冲区错误漏洞
MediaTek chips are a variety of chips from MediaTek, a Chinese company. MediaTek suffers from a buffer error vulnerability that originates from an out-of-bounds write in the hevc decoder due to a lack of bounds checking, which could result in a local privilege escalation affecting the following...