475 matches found
FFmpeg Multiple Vulnerabilities - Linux
FFmpeg is prone to multiple vulnerabilities SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2009-4632
oggparsevorbis.c in FFmpeg 0.5 does not properly perform certain pointer arithmetic, which might allow remote attackers to obtain sensitive memory contents and cause a denial of service via a crafted file that triggers an out-of-bounds read...
Out-of-bounds
oggparsevorbis.c in FFmpeg 0.5 does not properly perform certain pointer arithmetic, which might allow remote attackers to obtain sensitive memory contents and cause a denial of service via a crafted file that triggers an out-of-bounds read...
CVE-2009-4632
FFmpeg 0.5 contains CVE-2009-4632 in oggparsevorbis.c where pointer arithmetic flaws can trigger an out-of-bounds read, potentially enabling memory disclosure and a Denial of Service. The issue is documented in Mandriva/Gentoo/OpenVAS advisories referencing FFmpeg, with Remediation: update to pat...
CVE-2009-4632
oggparsevorbis.c in FFmpeg 0.5 does not properly perform certain pointer arithmetic, which might allow remote attackers to obtain sensitive memory contents and cause a denial of service via a crafted file that triggers an out-of-bounds read...
CVE-2009-0847
The asn1bufimbed function in the ASN.1 decoder in MIT Kerberos 5 aka krb5 1.6.3, when PK-INIT is used, allows remote attackers to cause a denial of service application crash via a crafted length value that triggers an erroneous malloc call, related to incorrect calculations with pointer arithmeti...
CVE-2009-0847
The asn1bufimbed function in the ASN.1 decoder in MIT Kerberos 5 aka krb5 1.6.3, when PK-INIT is used, allows remote attackers to cause a denial of service application crash via a crafted length value that triggers an erroneous malloc call, related to incorrect calculations with pointer arithmeti...
DEBIAN-CVE-2008-5187
The load function in the XPM loader for imlib2 1.4.2, and possibly other versions, allows attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted XPM file that triggers a "pointer arithmetic error" and a heap-based buffer overflow, a different vulnerability...
CVE-2008-5187
The load function in the XPM loader for imlib2 1.4.2, and possibly other versions, allows attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted XPM file that triggers a "pointer arithmetic error" and a heap-based buffer overflow, a different vulnerability...
CVE-2008-5187
CVE-2008-5187 affects imlib2 up to at least 1.4.2, where the XPM loader’s load function can crash or potentially allow code execution via a crafted XPM, caused by a pointer arithmetic error leading to a heap-based buffer overflow. Concrete details in connected advisories confirm this vulnerabilit...
CVE-2008-1685
gcc 4.2.0 through 4.3.0 in GNU Compiler Collection, when casts are not used, considers the sum of a pointer and an int to be greater than or equal to the pointer, which might lead to removal of length testing code that was intended as a protection mechanism against integer overflow and buffer...
PT-2008-1164 · Gnu · Gnu Compiler Collection
Name of the Vulnerable Software and Affected Versions: GNU Compiler Collection versions 4.2.0 through 4.3.0 Description: The issue is related to the incorrect handling of the sum of a pointer and an integer as greater than or equal to the pointer without using casts. This might lead to the remova...
C compilers may silently discard some wraparound checks
Overview Some C compilers optimize away pointer arithmetic overflow tests that depend on undefined behavior without providing a diagnostic a warning. Applications containing these tests may be vulnerable to buffer overflows if compiled with these compilers. Description In the C language, given th...
CVE-2006-0037
ipnatpptp in the PPTP NAT helper netfilter/ipnathelperpptp.c in Linux kernel 2.6.14, and other versions, allows local users to cause a denial of service memory corruption or crash via a crafted outbound packet that causes an incorrect offset to be calculated from pointer arithmetic when non-linea...
CVE-2006-0037
ipnatpptp in the PPTP NAT helper netfilter/ipnathelperpptp.c in Linux kernel 2.6.14, and other versions, allows local users to cause a denial of service memory corruption or crash via a crafted outbound packet that causes an incorrect offset to be calculated from pointer arithmetic when non-linea...