2300 matches found
CVE-2017-5049
CVE-2017-5049 affects Google Chrome (Mac/Windows/Linux) and Android via an integer overflow in FFmpeg inside Chrome’s ChunkDemuxer, enabling remote code execution through a crafted video file. Fixes exist in Chrome 57.0.2987.98 (and 57.0.2987.108 on Android); users should upgrade to a version tha...
CVE-2017-5047
Removed by vendor...
CVE-2017-5050
The CVE-2017-5050 issue concerns an integer overflow in FFmpeg used by Google Chrome. It allows a remote attacker to trigger an out-of-bounds memory write via a crafted video file, related to ChunkDemuxer. Affected: Chrome desktop builds before 57.0.2987.98 and Android before 57.0.2987.108. Remed...
CVE-2017-5049
An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer...
CVE-2017-5050
An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer...
CVE-2017-5049
Removed by vendor...
CVE-2017-5029
The xsltAddTextString function in transform.c in libxslt 1.1.29, as used in Blink in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android, lacked a check for integer overflow during a size calculation, which allowed a remote attacker to perform an out of...
DEBIAN-CVE-2017-5029
The xsltAddTextString function in transform.c in libxslt 1.1.29, as used in Blink in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android, lacked a check for integer overflow during a size calculation, which allowed a remote attacker to perform an out of...
CVE-2017-5029
The xsltAddTextString function in transform.c in libxslt 1.1.29, as used in Blink in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android, lacked a check for integer overflow during a size calculation, which allowed a remote attacker to perform an out of...
CVE-2017-5037
An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer...
Integer overflow
An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer...
CVE-2017-5037
An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer...
CVE-2017-5037
An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer...
CVE-2017-5037
CVE-2017-5037: In Chromium/Chromium-based browsers, multiple out-of-bounds writes were reported in the ChunkDemuxer component. A remote attacker could exploit crafted media content to trigger issues; affected versions include Chromium up to 57.0.2987.98.x. Upgrading to 57.0.2987.98 or newer mitig...
CVE-2017-5037
Removed by vendor...
CVE-2017-5029
The xsltAddTextString function in transform.c in libxslt 1.1.29, as used in Blink in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android, lacked a check for integer overflow during a size calculation, which allowed a remote attacker to perform an out of...
CVE-2017-5029
CVE-2017-5029 affects libxslt 1.1.29 and is used by Blink/Chrome. The issue is an integer overflow in xsltAddTextString during a size calculation, enabling a remote attacker to cause an out-of-bounds memory write via a crafted HTML page. Connected records corroborate the libxslt involvement and i...
UBUNTU-CVE-2017-5448
An out-of-bounds write in "ClearKeyDecryptor" while decrypting some Clearkey-encrypted media content. The "ClearKeyDecryptor" code runs within the Gecko Media Plugin GMP sandbox. If a second mechanism is found to escape the sandbox, this vulnerability allows for the writing of arbitrary data with...
CVE-2016-7531
MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service out-of-bounds write via a crafted PDB file...
DEBIAN-CVE-2017-7861
Google gRPC before 2017-02-22 has an out-of-bounds write related to the gprfree function in core/lib/support/alloc.c...