6 matches found
CVE-2026-11079
CVE-2026-11079 concerns Google Chrome’s Codecs. The issue is caused by insufficient validation of untrusted input in codecs, enabling a remote attacker to trigger an out-of-bounds memory write via a crafted video file. Affected product: Google Chrome (before 149.0.7827.53). The impact, as describ...
EUVD-2026-14883
The 32-bit implementation of NGINX Open Source has a vulnerability in the ngxhttpmp4module module, which might allow an attacker to over-read or over-write NGINX worker memory resulting in its termination, using a specially crafted MP4 file. The issue only affects 32-bit NGINX Open Source if it i...
SUSE CVE-2017-9122
The quicktimereadmoov function in moov.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service infinite loop and CPU consumption via a crafted mp4 file...
CVE-2022-43236
Libde265 v1.0.8 was discovered to contain a stack-buffer-overflow vulnerability via putqpelfallback in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted video file...
Exempi Denial of Service Vulnerability (CNVD-2018-06684)
Exempi is an open source implementation of XMP based on the Adobe XMP SDK. A security vulnerability exists in the Chunk class of the XMPFiles/source/FormatSupport/RIFF.cpp file in versions of Exempi prior to 2.4.4. A remote attacker can exploit this vulnerability to cause a denial of service...
Mandriva Linux Security Advisory : mplayer (MDVSA-2008:219)
A vulnerability that was discovered in xine-lib that allowed remote RTSP servers to execute arbitrary code via a large streamid SDP parameter also affects MPlayer CVE-2008-0073. Several integer overflows were discovered by Felipe Andres Manzano in MPlayer's Real video stream demuxing code. These...