FFmpeg 'ff_get_buffer' Function Denial of Service Vulnerability

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in the 'ffgetbuffer' function in the libavcodec/utils.c file in versions of FFmpeg prior to 2.8.4, which originates from a failed program execution that does...

UBUNTU-CVE-2015-8216

The ljpegdecodeyuvscan function in libavcodec/mjpegdec.c in FFmpeg before 2.8.2 omits certain width and height checks, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted MJPEG data...

DEBIAN-CVE-2015-8216

The ljpegdecodeyuvscan function in libavcodec/mjpegdec.c in FFmpeg before 2.8.2 omits certain width and height checks, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted MJPEG data...

CVE-2002-2061

Heap-based buffer overflow in Netscape 6.2.3 and Mozilla 1.0 and earlier allows remote attackers to crash client browsers and execute arbitrary code via a PNG image with large width and height values and an 8-bit or 16-bit alpha channel...

CVE-2015-0852

Multiple integer underflows in PluginPCX.cpp in FreeImage 3.17.0 and earlier allow remote attackers to cause a denial of service heap memory corruption via vectors related to the height and width of a window...

FFmpeg destroy_buffers Denial of Service Vulnerability

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in the 'destroybuffers' function in the libavcodec/sanm.c file in versions of FFmpeg prior to 2.7.2, which stems from the program's failure to correctly...

CVE-2015-6822

The destroybuffers function in libavcodec/sanm.c in FFmpeg before 2.7.2 does not properly maintain height and width values in the video context, which allows remote attackers to cause a denial of service segmentation violation and application crash or possibly have unspecified other impact via...

sqlite: stack buffer overflow in src/printf.c

It was found that SQLite's sqlite3VXPrintf function did not properly handle precision and width values during floating-point conversions. A local attacker could submit a specially crafted SELECT statement that would crash the SQLite process, or have other unspecified impacts...

sqlite: stack buffer overflow in src/printf.c

It was found that SQLite's sqlite3VXPrintf function did not properly handle precision and width values during floating-point conversions. A local attacker could submit a specially crafted SELECT statement that would crash the SQLite process, or have other unspecified impacts...

Adobe Flash Player ShaderJob Buffer Overflow Exploit

This Metasploit module exploits a buffer overflow vulnerability related to the ShaderJob workings on Adobe Flash Player. The vulnerability happens when trying to apply a Shader setting up the same Bitmap object as src and destination of the ShaderJob. Modifying the "width" attribute of the...

chromium-browser: Uninitialized value in Blink.

platform/fonts/shaping/HarfBuzzShaper.cpp in Blink, as used in Google Chrome before 43.0.2357.65, does not initialize a certain width field, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted Unicode text...

Google Chrome Blink Code Injection Vulnerability

Blink is a browser typography engine developed by Google and Opera Software. A security vulnerability exists in the platform/fonts/shaping/HarfBuzzShaper.cpp file in Google Chrome Blink. due to the program failing to initialize the width field. A remote attacker could exploit this vulnerability t...

UBUNTU-CVE-2015-1262

platform/fonts/shaping/HarfBuzzShaper.cpp in Blink, as used in Google Chrome before 43.0.2357.65, does not initialize a certain width field, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted Unicode text...

SQLite Denial of Service Vulnerability (CNVD-2015-02748)

SQLite is an open source C-based embedded relational database management system developed by American software developer D. Richard Hipp. The system is characterized by independence, isolation, cross-platform and so on. A security vulnerability exists in the 'sqlite3VXPrintf' function in the...

DEBIAN-CVE-2015-3416

The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions, which allows context-dependent attackers to cause a denial of service integer overflow and stack-based buffer overflow or possibly have unspecifie...

UBUNTU-CVE-2015-3416

The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions, which allows context-dependent attackers to cause a denial of service integer overflow and stack-based buffer overflow or possibly have unspecifie...

CVE-2015-3416

The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions, which allows context-dependent attackers to cause a denial of service integer overflow and stack-based buffer overflow or possibly have unspecifie...

OnePlus DR-1 — World's Smallest $19.99 Drone

Chinese smartphone maker OnePlus who recently announced that the company is planning to launch its latest flying drone, OnePlus DR-1, saying it would be a "Game Changer." There have already been some speculations about a drone from OnePlus circulating on the Internet, but now the company has...

Debian DLA-120-2 : xorg-server regression update

Andreas Cord-Landwehr reported an issue where the X.Org Xserver would often crash with an arithmetic exception when maximizing application windows. This issue CVE-2015-3418 is a regression which got introduced by fixing CVE-2014-8092. The above referenced version of xorg-server in Debian...

FastStone Image Viewer 5.3 - .tga Crash (PoC)

FastStone Image Viewer 5.3 - .tga Crash PoC Exploit Title : FastStoneImage Viewer Corrupted tga IMAGESPECIFICATION.Width Crash POC Product : FastStoneImage Viewer Date : 25.02.2015 Exploit Author : ITDefensor Vulnerability Research Team http://itdefensor.ru/ Software Link :...