The ff_h2645_extract_rbsp function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read) or obtain sensitive information from process memory via a crafted h264 video file.
All posts by 007admin
Mozilla Firefox Table Use-After-Free
Mozilla Firefox suffers from a table use-after-free vulnerability.
QEMU User-To-Root Privilege Escalation
QEMU suffers from a user-to-root privilege escalation vulnerability inside a VM due to bad translation caching.
Microsoft Internet Explorer textarea.defaultValue Memory Disclosure
Microsoft Internet Explorer textarea.defaultValue suffers from a memory disclosure vulnerability.
Microsoft Windows Color Management Crash
Microsoft Windows Color Management library suffers from a crash vulnerability.
Microsoft Windows Uniscribe USP10!ScriptApplyLogicalWidth Out-Of-Bounds Read
Microsoft Windows Uniscribe heap-based out-of-bounds read in USP10!ScriptApplyLogicalWidth, trigger via EMF.
Microsoft Color Management Module icm32!Fill_ushort_ELUTs_from_lut16Tag Out-Of-Bounds Read
The Microsoft Color Management module suffers from out-of-bounds read vulnerability in icm32!Fill_ushort_ELUTs_from_lut16Tag.
Microsoft GDI+ gdiplus!GetRECTSForPlayback Out-Of-Bounds Read
Microsoft GDI+ suffers from an out-of-bounds read vulnerability in gdiplus!GetRECTSForPlayback.
Microsoft Windows Uniscribe Out-Of-Bounds / WIld Reads
Microsoft Windows suffers from uniscribe font processing heap-based out-of-bounds and wild read vulnerabilities.
Microsoft Windows Uniscribe USP10!FillAlternatesList Buffer Overflow
Microsoft Windows suffers from a uniscribe font processing buffer overflow vulnerability in USP10!FillAlternatesList.