39 matches found
CVE-2026-33666
Zserio is a framework for serializing structured data with a compact and efficient way with low overhead. Prior to 2.18.1, in BitStreamReader.h readBytes / readString, the setBitPosition bounds check receives the overflowed value and is completely bypassed. The code then reads len bytes 512 MB fr...
Integer Overflow or Wraparound
Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound via the readBytes or readString functions in BitStreamReader when the setBitPosition process receives an overflowed value, bypassing bounds checks. An attacker can cause a segmentation fault and potentiall...
CVE-2026-33666
Zserio is a framework for serializing structured data with a compact and efficient way with low overhead. Prior to 2.18.1, in BitStreamReader.h readBytes / readString, the setBitPosition bounds check receives the overflowed value and is completely bypassed. The code then reads len bytes 512 MB fr...
CVE-2026-33666
Zserio has a vulnerability in BitStreamReader.h readBytes()/readString() prior to 2.18.1 where setBitPosition() bounds checking can be bypassed on overflow, causing the code to read a large len (up to 512 MB) from a very small buffer and trigger a segmentation fault. The issue is fixed in 2.18.1....
EUVD-2026-25593
Zserio is a framework for serializing structured data with a compact and efficient way with low overhead. Prior to 2.18.1, in BitStreamReader.h readBytes / readString, the setBitPosition bounds check receives the overflowed value and is completely bypassed. The code then reads len bytes 512 MB fr...
EUVD-2018-5200
Malware in sbrugna...
EUVD-2019-17120
Malware in sbrugna...
EUVD-2023-37872
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2023-33717
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mp4v2 v2.1.3 was discovered to contain a memory leak when a method calling MP4File::ReadBytes had allocated memory but did not catch exceptions thrown by...
Linux Distros Unpatched Vulnerability : CVE-2019-8378
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Bento4 1.5.1-628. A heap-based buffer over-read exists in AP4BitStream::ReadBytes in Codecs/Ap4BitStream.cpp, a similar issue to...
CVE-2023-33717
mp4v2 v2.1.3 was discovered to contain a memory leak when a method calling MP4File::ReadBytes had allocated memory but did not catch exceptions thrown by ReadBytes...
PT-2023-8471 · Imagination Technologies · Powervr Gpu Driver
Name of the Vulnerable Software and Affected Versions: PowerVR GPU driver affected versions not specified Description: The issue is related to a use after free in the PMR ReadBytes function of the PowerVR GPU driver, which could lead to arbitrary code execution. This might result in local...
PT-2023-8468 · Unknown · Powervr Gpu Driver
Name of the Vulnerable Software and Affected Versions: PowerVR GPU driver versions affected versions not specified Description: The issue is related to a buffer overflow in the PowerVR GPU driver, specifically in the PMR ReadBytes function for Android and ChromeOS, and an out of bounds write in t...
Denial Of Service (DoS)
libmp4v2.so is vulnerable to Denial Of Service DoS. The vulnerability exists due to theMP4File::ReadBytes function which allows an attacker to cause an application crash...
CVE-2023-33717
mp4v2 v2.1.3 was discovered to contain a memory leak when a method calling MP4File::ReadBytes had allocated memory but did not catch exceptions thrown by ReadBytes...
CVE-2023-33717
mp4v2 v2.1.3 was discovered to contain a memory leak when a method calling MP4File::ReadBytes had allocated memory but did not catch exceptions thrown by ReadBytes...
CVE-2023-33717
mp4v2 v2.1.3 was discovered to contain a memory leak when a method calling MP4File::ReadBytes had allocated memory but did not catch exceptions thrown by ReadBytes...
CVE-2023-33717
mp4v2 v2.1.3 was discovered to contain a memory leak when a method calling MP4File::ReadBytes had allocated memory but did not catch exceptions thrown by ReadBytes...
Buffer overflow vulnerability in libming 'readBytes' function
libming is a Flash SWF output library written in C. It can be used as a library to export Flash SWF files to other languages. A buffer overflow vulnerability exists in the 'readBytes' function of the util/read.c file in libming 0.4.8 and earlier. No detailed vulnerability details are provided at...
CVE-2019-8378
An issue was discovered in Bento4 1.5.1-628. A heap-based buffer over-read exists in AP4BitStream::ReadBytes in Codecs/Ap4BitStream.cpp, a similar issue to CVE-2017-14645. It can be triggered by sending a crafted file to the aac2mp4 binary. It allows an attacker to cause a Denial of Service...