OSV-2025-955 Use-of-uninitialized-value in decoder_context::construct_reference_picture_lists

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=464323256 Crash type: Use-of-uninitialized-value Crash state: decodercontext::constructreferencepicturelists decodercontext::processslicesegmentheader decodercontext::readsliceNAL...

Cisco Small Business SPA300, SPA500 and SPA51x Denial of Service Vulnerabilities

The Cisco Small Business SPA300, SPA500, and SPA51x are all S-series IP phone products from Cisco. A denial of service vulnerability exists in the processing of IP slices in the Cisco Small Business SPA300, SPA500, and SPA51x series of IP phones, which stems from the program's failure to handle...