82 matches found
PT-2025-28868
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the megaraid sas module. Specifically, an out-of-bounds access can occur on systems with DRAM interleave enabled, potentially leading to system...
PYSEC-2024-141
Heap buffer overflow in paddle.repeatinterleavein PaddlePaddle before 2.6.0. This flaw can lead to a denial of service, information disclosure, or more damage is possible...
PT-2024-14516 · Unknown · Paddlepaddle
Name of the Vulnerable Software and Affected Versions: PaddlePaddle versions prior to 2.6.0 Description: A heap buffer overflow flaw exists in the paddle.repeat interleave function. This issue can lead to a denial of service, information disclosure, or potentially more severe damage...
SUSE CVE-2016-5157
Heap-based buffer overflow in the opjdwtinterleavev function in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to execute arbitrary code via crafted coordinate values in JPEG 2000 data...
SUSE CVE-2018-13302
In FFmpeg 4.0.1, improper handling of frame types other than EAC3FRAMETYPEINDEPENDENT that have multiple independent substreams in the handleeac3 function in libavformat/movenc.c may trigger an out-of-array access while converting a crafted AVI file to MPEG4, leading to a denial of service or...
CVE-2022-33691
A possible race condition vulnerability in score driver prior to SMR Jul-2022 Release 1 can allow local attackers to interleave malicious operations...
protobuf-java: potential DoS in the parsing procedure for binary data
A flaw was found in protobuf-java. Google Protocol Buffer protobuf-java allows the interleaving of com.google.protobuf.UnknownFieldSet fields. By persuading a victim to open specially-crafted content, a remote attacker could cause a timeout in the ProtobufFuzzer function, resulting in a denial of...
UBUNTU-CVE-2020-21697
A heap-use-after-free in the mpegmuxwritepacket function in libavformat/mpegenc.c of FFmpeg 4.2 allows to cause a denial of service DOS via a crafted avi file...
DEBIAN-CVE-2021-25802
A buffer overflow vulnerability in the AVIExtractSubtitle component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file...
VideoLAN VLC Media Player 缓冲区错误漏洞
VideoLAN VLC is an open source cross-platform multimedia player and framework that can play most multimedia files, as well as DVDs, audio CDs, VCDs, and various streaming protocols. a buffer overflow vulnerability exists in the AVIExtractSubtitle component of VideoLAN VLC version 3.0.11, which ca...
VideoLAN VLC Media Player 缓冲区错误漏洞
VideoLAN VLC is an open source cross-platform multimedia player and framework that can play most multimedia files, as well as DVDs, audio CDs, VCDs and various streaming protocols.The Parseindx component in VideoLAN VLC version 3.0.11 suffers from a buffer overflow vulnerability that can be...
The vulnerability of the animation reproduction function in Blender’s software for creating 3D computer graphics is caused by a full-integer overflow, allowing an attacker to execute arbitrary code.
The vulnerability of the animation reproduction function in Blender’s 3D computer graphics software is caused by a numerical overflow. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created AVI file...
DEBIAN-CVE-2018-13300
In FFmpeg 3.2 and 4.0.1, an improper argument AVCodecParameters passed to the avprivrequestsample function in the handleeac3 function in libavformat/movenc.c may trigger an out-of-array read while converting a crafted AVI file to MPEG4, leading to a denial of service and possibly an information...
UBUNTU-CVE-2018-7557
The decodeinit function in libavcodec/utvideodec.c in FFmpeg 2.8 through 3.4.2 allows remote attackers to cause a denial of service Out of array read via an AVI file with crafted dimensions within chroma subsampling data...
Blender Sequencer avi_format_convert Integer Overflow Vulnerability
Blender is an open source cross-platform all-in-one 3D animation software, providing a series of animated short film production solutions from modeling, animation, materials, rendering, to audio processing, video editing and so on. An integer overflow vulnerability exists in Blender Sequencer...
Apple macOS 10.12.1 iOS Kernel - host_self_trap Use-After-Free
Apple macOS 10.12.1 iOS Kernel - hostselftrap Use-After-Free / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1034 The task struct has a lock itklockdata, taken via the itklock macros which is supposed to protect the task-itk ports. The hostselftrap mach trap accesses...
DEBIAN-CVE-2016-7905
The readgab2sub function in libavformat/avidec.c in FFmpeg before 3.1.4 allows remote attackers to cause a denial of service NULL pointer used via a crafted AVI file...
chromium-browser: heap overflow in pdfium
Heap-based buffer overflow in the opjdwtinterleavev function in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to execute arbitrary code via crafted coordinate values in JPEG 2000 data...
DEBIAN-CVE-2016-5157
Heap-based buffer overflow in the opjdwtinterleavev function in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to execute arbitrary code via crafted coordinate values in JPEG 2000 data...
OpenJPEG opj_dwt_interleave_v heap overflow vulnerability
OpenJPEG is a C-based open source JPEG 2000 codec . A security vulnerability exists in the opjdwtinterleavev function of OpenJPEG, which allows remote attackers to construct specially crafted JPEG 2000 images to trigger a heap overflow vulnerability that can be exploited for arbitrary code...