Lucene search
K

82 matches found

Positive Technologies
Positive Technologies
added 2025/07/09 12:0 a.m.6 views

PT-2025-28868

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the megaraid sas module. Specifically, an out-of-bounds access can occur on systems with DRAM interleave enabled, potentially leading to system...

7.8CVSS6.6AI score0.00146EPSS
Exploits0
PyPA
PyPA
added 2024/01/03 9:15 a.m.8 views

PYSEC-2024-141

Heap buffer overflow in paddle.repeatinterleavein PaddlePaddle before 2.6.0. This flaw can lead to a denial of service, information disclosure, or more damage is possible...

9.8CVSS7.3AI score0.00538EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/03 12:0 a.m.7 views

PT-2024-14516 · Unknown · Paddlepaddle

Name of the Vulnerable Software and Affected Versions: PaddlePaddle versions prior to 2.6.0 Description: A heap buffer overflow flaw exists in the paddle.repeat interleave function. This issue can lead to a denial of service, information disclosure, or potentially more severe damage...

9.8CVSS9.6AI score0.00538EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2023/02/15 5:1 a.m.2 views

SUSE CVE-2016-5157

Heap-based buffer overflow in the opjdwtinterleavev function in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to execute arbitrary code via crafted coordinate values in JPEG 2000 data...

8.8CVSS9.7AI score0.04702EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:26 a.m.6 views

SUSE CVE-2018-13302

In FFmpeg 4.0.1, improper handling of frame types other than EAC3FRAMETYPEINDEPENDENT that have multiple independent substreams in the handleeac3 function in libavformat/movenc.c may trigger an out-of-array access while converting a crafted AVI file to MPEG4, leading to a denial of service or...

5.3CVSS9AI score0.0221EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/07/12 2:15 p.m.2 views

CVE-2022-33691

A possible race condition vulnerability in score driver prior to SMR Jul-2022 Release 1 can allow local attackers to interleave malicious operations...

6.2CVSS5.8AI score0.00071EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2022/03/22 3:33 p.m.3 views

protobuf-java: potential DoS in the parsing procedure for binary data

A flaw was found in protobuf-java. Google Protocol Buffer protobuf-java allows the interleaving of com.google.protobuf.UnknownFieldSet fields. By persuading a victim to open specially-crafted content, a remote attacker could cause a timeout in the ProtobufFuzzer function, resulting in a denial of...

7.5CVSS7.2AI score0.01655EPSS
Exploits1References6
OSV
OSV
added 2021/08/10 9:15 p.m.2 views

UBUNTU-CVE-2020-21697

A heap-use-after-free in the mpegmuxwritepacket function in libavformat/mpegenc.c of FFmpeg 4.2 allows to cause a denial of service DOS via a crafted avi file...

6.5CVSS6.5AI score0.00917EPSS
Exploits1References5
OSV
OSV
added 2021/07/26 5:15 p.m.4 views

DEBIAN-CVE-2021-25802

A buffer overflow vulnerability in the AVIExtractSubtitle component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file...

7.1CVSS7.6AI score0.00741EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/07/26 12:0 a.m.4 views

VideoLAN VLC Media Player 缓冲区错误漏洞

VideoLAN VLC is an open source cross-platform multimedia player and framework that can play most multimedia files, as well as DVDs, audio CDs, VCDs, and various streaming protocols. a buffer overflow vulnerability exists in the AVIExtractSubtitle component of VideoLAN VLC version 3.0.11, which ca...

7.1CVSS6AI score0.00741EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/07/26 12:0 a.m.6 views

VideoLAN VLC Media Player 缓冲区错误漏洞

VideoLAN VLC is an open source cross-platform multimedia player and framework that can play most multimedia files, as well as DVDs, audio CDs, VCDs and various streaming protocols.The Parseindx component in VideoLAN VLC version 3.0.11 suffers from a buffer overflow vulnerability that can be...

7.1CVSS6AI score0.01522EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/11/25 12:0 a.m.5 views

The vulnerability of the animation reproduction function in Blender’s software for creating 3D computer graphics is caused by a full-integer overflow, allowing an attacker to execute arbitrary code.

The vulnerability of the animation reproduction function in Blender’s 3D computer graphics software is caused by a numerical overflow. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created AVI file...

7.8CVSS7.9AI score0.01866EPSS
Exploits1References6Affected Software2
OSV
OSV
added 2018/07/05 5:29 p.m.4 views

DEBIAN-CVE-2018-13300

In FFmpeg 3.2 and 4.0.1, an improper argument AVCodecParameters passed to the avprivrequestsample function in the handleeac3 function in libavformat/movenc.c may trigger an out-of-array read while converting a crafted AVI file to MPEG4, leading to a denial of service and possibly an information...

8.1CVSS6.6AI score0.02301EPSS
Exploits0References1
OSV
OSV
added 2018/02/28 7:29 a.m.4 views

UBUNTU-CVE-2018-7557

The decodeinit function in libavcodec/utvideodec.c in FFmpeg 2.8 through 3.4.2 allows remote attackers to cause a denial of service Out of array read via an AVI file with crafted dimensions within chroma subsampling data...

6.5CVSS7AI score0.01892EPSS
Exploits0References3
CNVD
CNVD
added 2018/01/12 12:0 a.m.5 views

Blender Sequencer avi_format_convert Integer Overflow Vulnerability

Blender is an open source cross-platform all-in-one 3D animation software, providing a series of animated short film production solutions from modeling, animation, materials, rendering, to audio processing, video editing and so on. An integer overflow vulnerability exists in Blender Sequencer...

8.8CVSS7.8AI score0.01866EPSS
Exploits1References1
exploitpack
exploitpack
added 2017/01/26 12:0 a.m.24 views

Apple macOS 10.12.1 iOS Kernel - host_self_trap Use-After-Free

Apple macOS 10.12.1 iOS Kernel - hostselftrap Use-After-Free / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1034 The task struct has a lock itklockdata, taken via the itklock macros which is supposed to protect the task-itk ports. The hostselftrap mach trap accesses...

Exploits0
OSV
OSV
added 2016/12/23 5:59 a.m.2 views

DEBIAN-CVE-2016-7905

The readgab2sub function in libavformat/avidec.c in FFmpeg before 3.1.4 allows remote attackers to cause a denial of service NULL pointer used via a crafted AVI file...

5.5CVSS6.7AI score0.01666EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/09/12 7:39 p.m.5 views

chromium-browser: heap overflow in pdfium

Heap-based buffer overflow in the opjdwtinterleavev function in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to execute arbitrary code via crafted coordinate values in JPEG 2000 data...

8.8CVSS8AI score0.04702EPSS
Exploits0References5
OSV
OSV
added 2016/09/11 10:59 a.m.3 views

DEBIAN-CVE-2016-5157

Heap-based buffer overflow in the opjdwtinterleavev function in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to execute arbitrary code via crafted coordinate values in JPEG 2000 data...

8.8CVSS9.6AI score0.04702EPSS
Exploits0References1
CNVD
CNVD
added 2016/09/08 12:0 a.m.1 views

OpenJPEG opj_dwt_interleave_v heap overflow vulnerability

OpenJPEG is a C-based open source JPEG 2000 codec . A security vulnerability exists in the opjdwtinterleavev function of OpenJPEG, which allows remote attackers to construct specially crafted JPEG 2000 images to trigger a heap overflow vulnerability that can be exploited for arbitrary code...

8AI score
Exploits0References1
Rows per page
Query Builder