151 matches found
Security update for libavif
This update for libavif fixes the following issues: update to 1.3.0: CVE-2025-48175: Fixed an integer overflows in multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes. bsc1243270 CVE-2025-48174: Fixed an integer overflow and resultant buffer overflow in stream-offset+size...
SUSE-SU-2025:02817-1 Security update for libavif
This update for libavif fixes the following issues: - update to 1.3.0: - CVE-2025-48175: Fixed an integer overflows in multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes. bsc1243270 - CVE-2025-48174: Fixed an integer overflow and resultant buffer overflow in...
Security update for libavif
This update for libavif fixes the following issues: update to 1.3.0: CVE-2025-48175: Fixed an integer overflows in multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes. bsc1243270 CVE-2025-48174: Fixed an integer overflow and resultant buffer overflow in stream-offset+size...
SUSE-SU-2025:02816-1 Security update for libavif
This update for libavif fixes the following issues: - update to 1.3.0: - CVE-2025-48175: Fixed an integer overflows in multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes. bsc1243270 - CVE-2025-48174: Fixed an integer overflow and resultant buffer overflow in...
Astra Linux – Vulnerability in libavif
In libavif before version 1.3.0, the makeRoom function in stream.c has an integer overflow, resulting in a buffer overflow at stream-offset+size...
Astra Linux – Vulnerability in libavif
In libavif before version 1.3.0, the avifImageRGBToYUV function in reformat.c contains integer overflows during multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes...
Debian: Security Advisory (DSA-5930-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 5930-1] libavif security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5930-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 29, 2025 https://www.debian.org/security/faq -...
DSA-5930-1 libavif - security update
Bulletin has no description...
Debian dsa-5930 : libavif-bin - security update
The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5930 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5930-1 [email protected] https://www.debian.org/securit...
[SECURITY] [DLA 4179-1] libavif security update
Debian LTS Advisory DLA-4179-1 [email protected] https://www.debian.org/lts/security/ Carlos Henrique Lima Melara May 26, 2025 https://wiki.debian.org/LTS Package : libavif Version : 0.8.4-2+deb11u2 CVE ID : CVE-2025-48174 CVE-2025-48175 Debian Bug : 1105883 1105885 Multiple...
Debian: Security Advisory (DLA-4179-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian dla-4179 : libavif-bin - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4179 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4179-1 [email protected]...
DLA-4179-1 libavif - security update
Bulletin has no description...
Integer Overflow
libavif is vulnerable to Integer Overflow. The vulnerability is due to integer overflow due to unsafe multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes in the avifImageRGBToYUV function in reformat.c...
Buffer Overflow
libavif is vulnerable to Buffer Overflow. The vulnerability is due to integer overflow due to improper bounds checking when calculating stream-offset + size in makeRoom in stream.c, which can lead to a buffer overflow...
SUSE CVE-2025-48174
In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer overflow in stream-offset+size...
SUSE CVE-2025-48175
In libavif before 1.3.0, avifImageRGBToYUV in reformat.c has integer overflows in multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes...
Integer Overflow or Wraparound
Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound due to the avifImageRGBToYUV function. An attacker can execute arbitrary code by exploiting the integer overflows in the calculations of rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes. Remediation Upgrad...
CVE-2025-48174
In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer overflow in stream-offset+size...