Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

mateusz jurczyk vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2014-9656
The tt_sbit_decoder_load_image function in sfnt/ttsbit.c in FreeType prior to 2.5.4 does not properly check for an integer overflow, which allows remote malicious users to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted OpenT...
Fedoraproject Fedora 20Fedoraproject Fedora 21Freetype FreetypeDebian Debian Linux 7.0Opensuse Opensuse 13.2Opensuse Opensuse 13.1Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 15.04Canonical Ubuntu Linux 14.10Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 12.04
NA
CVE-2014-9666
The tt_sbit_decoder_init function in sfnt/ttsbit.c in FreeType prior to 2.5.4 proceeds with a count-to-size association without restricting the count value, which allows remote malicious users to cause a denial of service (integer overflow and out-of-bounds read) or possibly have...
Opensuse Opensuse 13.1Opensuse Opensuse 13.2Oracle Solaris 10.0Oracle Solaris 11.2Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 15.04Canonical Ubuntu Linux 14.10Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 12.04Debian Debian Linux 7.0Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Server Eus 7.1Redhat Enterprise Linux Hpc Node Eus 7.1Redhat Enterprise Linux Workstation 7.0Redhat Enterprise Linux Server Eus 6.6.zRedhat Enterprise Linux Workstation 6.0Redhat Enterprise Linux Server 7.0Redhat Enterprise Linux Hpc Node 7.0Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Hpc Node 6Redhat Enterprise Linux Desktop 7.0Fedoraproject Fedora 21
NA
CVE-2014-9672
Array index error in the parse_fond function in base/ftmac.c in FreeType prior to 2.5.4 allows remote malicious users to cause a denial of service (out-of-bounds read) or obtain sensitive information from process memory via a crafted FOND resource in a Mac font file.
Oracle Solaris 11.2Oracle Solaris 10.0Debian Debian Linux 7.0Canonical Ubuntu Linux 15.04Canonical Ubuntu Linux 14.10Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 10.04Freetype FreetypeOpensuse Opensuse 13.2Opensuse Opensuse 13.1
NA
CVE-2011-3929
The avpriv_dv_produce_packet function in libavcodec in FFmpeg 0.7.x prior to 0.7.12 and 0.8.x prior to 0.8.11 and in Libav 0.5.x prior to 0.5.9, 0.6.x prior to 0.6.6, 0.7.x prior to 0.7.5, and 0.8.x prior to 0.8.1 allows remote malicious users to cause a denial of service (NULL p...
Ffmpeg Ffmpeg 0.7.7Ffmpeg Ffmpeg 0.7.1Ffmpeg Ffmpeg 0.7.6Ffmpeg Ffmpeg 0.7.8Ffmpeg Ffmpeg 0.7.9Ffmpeg Ffmpeg 0.7.11Ffmpeg Ffmpeg 0.7.2Ffmpeg Ffmpeg 0.8.6Ffmpeg Ffmpeg 0.8.5Ffmpeg Ffmpeg 0.8.10Ffmpeg Ffmpeg 0.8.7Ffmpeg Ffmpeg 0.8.8Libav Libav 0.5.6Libav Libav 0.5.7Libav Libav 0.5.3Libav Libav 0.5Libav Libav 0.5.2Libav Libav 0.5.5Libav Libav 0.5.4Libav Libav 0.5.1Libav Libav 0.6.5Libav Libav 0.6.2
NA
CVE-2011-3940
nsvdec.c in libavcodec in FFmpeg 0.7.x prior to 0.7.12 and 0.8.x prior to 0.8.11, and in Libav 0.5.x prior to 0.5.9, 0.6.x prior to 0.6.6, 0.7.x prior to 0.7.5, and 0.8.x prior to 0.8.1, allows remote malicious users to cause a denial of service (out-of-bounds read and write) via...
Ffmpeg Ffmpeg 0.7.7Ffmpeg Ffmpeg 0.7.1Ffmpeg Ffmpeg 0.7.6Ffmpeg Ffmpeg 0.7.8Ffmpeg Ffmpeg 0.7.9Ffmpeg Ffmpeg 0.7.11Ffmpeg Ffmpeg 0.7.2Ffmpeg Ffmpeg 0.8.6Ffmpeg Ffmpeg 0.8.5Ffmpeg Ffmpeg 0.8.10Ffmpeg Ffmpeg 0.8.7Ffmpeg Ffmpeg 0.8.8Libav Libav 0.5.6Libav Libav 0.5.7Libav Libav 0.5.3Libav Libav 0.5Libav Libav 0.5.2Libav Libav 0.5.5Libav Libav 0.5.4Libav Libav 0.5.1Libav Libav 0.6.5Libav Libav 0.6.2
NA
CVE-2011-3936
The dv_extract_audio function in libavcodec in FFmpeg 0.7.x prior to 0.7.12 and 0.8.x prior to 0.8.11 and in Libav 0.5.x prior to 0.5.9, 0.6.x prior to 0.6.6, 0.7.x prior to 0.7.5, and 0.8.x prior to 0.8.1 allows remote malicious users to cause a denial of service (out-of-bounds ...
Ffmpeg Ffmpeg 0.7.7Ffmpeg Ffmpeg 0.7.1Ffmpeg Ffmpeg 0.7.6Ffmpeg Ffmpeg 0.8.6Ffmpeg Ffmpeg 0.8.5Ffmpeg Ffmpeg 0.7.3Ffmpeg Ffmpeg 0.8.0Ffmpeg Ffmpeg 0.8.10Ffmpeg Ffmpeg 0.7.8Ffmpeg Ffmpeg 0.8.7Ffmpeg Ffmpeg 0.7.9Ffmpeg Ffmpeg 0.7Ffmpeg Ffmpeg 0.7.12Ffmpeg Ffmpeg 0.8.1Ffmpeg Ffmpeg 0.8.8Ffmpeg Ffmpeg 0.8.2Ffmpeg Ffmpeg 0.7.11Ffmpeg Ffmpeg 0.7.2Libav Libav 0.6.5Libav Libav 0.5.6Libav Libav 0.7Libav Libav 0.5.7
NA
CVE-2011-3947
Buffer overflow in mjpegbdec.c in libavcodec in FFmpeg 0.7.x prior to 0.7.12 and 0.8.x prior to 0.8.11, and in Libav 0.5.x prior to 0.5.9, 0.6.x prior to 0.6.6, 0.7.x prior to 0.7.5, and 0.8.x prior to 0.8.1, allows remote malicious users to cause a denial of service (crash) and ...
Ffmpeg Ffmpeg 0.7.7Ffmpeg Ffmpeg 0.7.1Ffmpeg Ffmpeg 0.7.6Ffmpeg Ffmpeg 0.7.8Ffmpeg Ffmpeg 0.7.9Ffmpeg Ffmpeg 0.7.11Ffmpeg Ffmpeg 0.7.2Ffmpeg Ffmpeg 0.8.6Ffmpeg Ffmpeg 0.8.5Ffmpeg Ffmpeg 0.8.10Ffmpeg Ffmpeg 0.8.7Ffmpeg Ffmpeg 0.8.8Libav Libav 0.5.6Libav Libav 0.5.7Libav Libav 0.5.3Libav Libav 0.5Libav Libav 0.5.2Libav Libav 0.5.5Libav Libav 0.5.4Libav Libav 0.5.1Libav Libav 0.6.5Libav Libav 0.6.2
NA
CVE-2012-1143
FreeType prior to 2.4.9, as used in Mozilla Firefox Mobile prior to 10.0.4 and other products, allows remote malicious users to cause a denial of service (divide-by-zero error) via a crafted font.
Freetype Freetype 2.0.3Freetype Freetype 2.4.0Freetype Freetype 2.4.2Mozilla Firefox Mobile 4.0Freetype Freetype 2.3.6Freetype FreetypeFreetype Freetype 2.1.9Freetype Freetype 2.1.10Freetype Freetype 2.3.4Freetype Freetype 2.0.1Freetype Freetype 2.3.5Mozilla Firefox Mobile 8.0Mozilla Firefox Mobile 10.0.1Mozilla Firefox Mobile 7.0Freetype Freetype 2.1Freetype Freetype 2.1.5Freetype Freetype 2.3.10Mozilla Firefox Mobile 10.0.2Freetype Freetype 1.3.1Mozilla Firefox Mobile 6.0.2Freetype Freetype 2.4.4Freetype Freetype 2.4.6
NA
CVE-2012-0859
The render_line function in the vorbis codec (vorbis.c) in libavcodec in FFmpeg prior to 0.9.1 allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted Vorbis file, related to a large multiplier. NOTE: this v...
Ffmpeg Ffmpeg 0.7.7Ffmpeg Ffmpeg 0.7.1Ffmpeg Ffmpeg 0.8.6Ffmpeg FfmpegFfmpeg Ffmpeg 0.8.5Ffmpeg Ffmpeg 0.8.10Ffmpeg Ffmpeg 0.7.8Ffmpeg Ffmpeg 0.8.7Ffmpeg Ffmpeg 0.7.9Ffmpeg Ffmpeg 0.7.12Ffmpeg Ffmpeg 0.8.11Ffmpeg Ffmpeg 0.8.8Ffmpeg Ffmpeg 0.7.11Ffmpeg Ffmpeg 0.7.2
NA
CVE-2012-0853
The decodeTonalComponents function in the Actrac3 codec (atrac3.c) in libavcodec in FFmpeg 0.7.x prior to 0.7.12, and 0.8.x prior to 0.8.11; and in Libav 0.5.x prior to 0.5.9, 0.6.x prior to 0.6.6, 0.7.x prior to 0.7.5, and 0.8.x prior to 0.8.1 allows remote malicious users to ca...
Ffmpeg Ffmpeg 0.7.7Ffmpeg Ffmpeg 0.7.1Ffmpeg Ffmpeg 0.7.6Ffmpeg Ffmpeg 0.8.6Ffmpeg Ffmpeg 0.8.5Ffmpeg Ffmpeg 0.7.3Ffmpeg Ffmpeg 0.8.0Ffmpeg Ffmpeg 0.8.10Ffmpeg Ffmpeg 0.7.8Ffmpeg Ffmpeg 0.8.7Ffmpeg Ffmpeg 0.7.9Ffmpeg Ffmpeg 0.7Ffmpeg Ffmpeg 0.8.1Ffmpeg Ffmpeg 0.8.8Ffmpeg Ffmpeg 0.8.2Ffmpeg Ffmpeg 0.7.11Ffmpeg Ffmpeg 0.7.2Libav Libav 0.6.5Libav Libav 0.5.6Libav Libav 0.7Libav Libav 0.5.7Libav Libav 0.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654CVE-2023-49606encryptionNULL pointer dereferenceCVE-2024-4439CVE-2024-4649race conditionCVE-2024-27202CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook