Download
| Alert*
oval:org.secpod.oval:def:605093
libvpx-dev is installed oval:org.secpod.oval:def:704891 libvpx-dev is installed oval:org.secpod.oval:def:2001227 A remote denial of service vulnerability in libvpx in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High severity due to the possibility of remote denial of service. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, ... oval:org.secpod.oval:def:2004451 In vp8_decode_frame of decodeframe.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure if error correction were turned on, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: ... oval:org.secpod.oval:def:1901814 A vulnerability in the Android media framework related to odd frame width. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-64710201. oval:org.secpod.oval:def:69793 Multiple security issues were found in libvpx-dev multimedia library which could result in denial of service and potentially the execution of arbitrary code if malformed WebM files are processed. oval:org.secpod.oval:def:612685 Clement Lecigne discovered a heap-based buffer overflow in libvpx, a multimedia library for the VP8 and VP9 video codecs, which may result in the execution of arbitrary code if a specially crafted VP8 media stream is processed. oval:org.secpod.oval:def:612708 It was discovered that missing input sanitising in the encoding support in libvpx, a multimedia library for the VP8 and VP9 video codecs, may result in denial of service. oval:org.secpod.oval:def:96399 libvpx: VP8 and VP9 video codec Several security issues were fixed in libvpx. oval:org.secpod.oval:def:95217 Clement Lecigne discovered a heap-based buffer overflow in libvpx, a multimedia library for the VP8 and VP9 video codecs, which may result in the execution of arbitrary code if a specially crafted VP8 media stream is processed. oval:org.secpod.oval:def:95226 It was discovered that missing input sanitising in the encoding support in libvpx, a multimedia library for the VP8 and VP9 video codecs, may result in denial of service. oval:org.secpod.oval:def:708986 libvpx: VP8 and VP9 video codec libvpx could be made to crash or run programs if it opened a specially crafted file. |