media-libs

Security Bug Reports

• media-libs/netpbm: ITFFRGBAImageGet out-of-bounds read and write (CVE-2017-5849)

  618612 - Assigned to Gentoo Security
• <media-libs/libid3tag-0.16.2: multiple vulnerabilites

  626698 - Assigned to Gentoo Security
• media-libs/libmad: Dos (memory corruption) via crafted MP3 files

  626822 - Assigned to Gentoo Security
• media-libs/libgig: Multiple vulnerabilities

  662172 - Assigned to Gentoo Security
• media-libs/audiofile: Denial of service in ulaw2linear_buf via crafted file (CVE-2019-13147)

  711394 - Assigned to Gentoo Security
• media-libs/libsixel: Multiple vulnerabilities (CVE-2020-{11721,19668})

  717254 - Assigned to Gentoo Security
• media-libs/libwmf: Flawed malloc implementation allowing denial of service (CVE-2016-9011)

  724532 - Assigned to Gentoo Security
• <media-libs/raptor-2.0.15-r3: heap overflow (CVE-2020-25713)

  754264 - Assigned to Gentoo Security
• <media-libs/sdl-mixer-1.2.12_p20221010: Off-by-one buffer overflow

  771168 - Assigned to Gentoo Security
• media-libs/giflib: multiple vulnerabilities

  785664 - Assigned to Gentoo Security
• <media-libs/exiftool-12.26: Vulnerability in lang option

  791397 - Assigned to Gentoo Security
• media-libs/libcaca: Heap buffer overflow (CVE-2021-{30498,30499})

  792339 - Assigned to Gentoo Security
• <media-libs/libjpeg-turbo-2.0.4: buffer overrun vulnerability (CVE-2020-17541)

  797424 - Assigned to Gentoo Security
• <media-libs/gd-2.3.3: OOB read (CVE-2021-38115)

  807058 - Assigned to Gentoo Security
• <media-libs/grilo-0.3.14: improper TLS verification (CVE-2021-39365)

  809713 - Assigned to Gentoo Security
• media-libs/plib: integer overflow leading to code execution (CVE-2021-38714)

  810034 - Assigned to Gentoo Security
• media-libs/gd: OOB read (CVE-2021-40812)

  812482 - Assigned to Gentoo Security
• <media-libs/libexif-0.6.23: Multiple vulnerabilities

  812833 - Assigned to Gentoo Security
• <media-libs/libde265-1.0.9: multiple vulnerabilities

  813486 - Assigned to Gentoo Security
• <media-libs/libjpeg-turbo-2.1.1: Out of bounds read (CVE-2021-37972)

  814206 - Assigned to Gentoo Security
• media-libs/libgig: heap overflow (CVE-2021-32294)

  815484 - Assigned to Gentoo Security
• <media-libs/gegl-0.4.34: shell expansion via pathname in system()

  829880 - Assigned to Gentoo Security
• <media-libs/openjpeg-2.5.2: Heap-buffer-overflow in color.c:379:42 in sycc420_to_rgb

  832007 - Assigned to Gentoo Security
• <media-libs/exiftool-12.42: lib/Image/ExifTool.pm mishandles a $file =~ /\|$/ check

  832033 - Assigned to Gentoo Security
• <media-libs/libsixel-1.10.3: multiple vulnerabilities

  832049 - Assigned to Gentoo Security
• <media-libs/libaom-3.3.0: Multiple vulnerabilities

  833581 - Assigned to Gentoo Security
• <media-libs/flac-1.3.4: Multiple vulnerabilities

  833929 - Assigned to Gentoo Security
• <media-libs/libpano13-2.9.21: oob read

  835080 - Assigned to Gentoo Security
• <media-libs/libmediainfo-22.03: parsing/crash bugs

  836564 - Assigned to Gentoo Security
• <media-libs/libcaca-0.99_beta19-r4: multiple vulnerabilities

  839741 - Assigned to Gentoo Security
• <media-libs/sdl2-ttf-2.20.0: arbitrary memory write

  843434 - Assigned to Gentoo Security
• media-libs/giflib: DoS via excessive memory consumption

  851945 - Assigned to Gentoo Security
• <media-libs/tiff-4.5.0: multiple vulnerabilities

  856478 - Assigned to Gentoo Security
• <media-libs/gst-plugins-good-1.20.3: multiple vulnerabilities

  859418 - Assigned to Gentoo Security
• media-libs/libmpeg2: buffer overflow in impeg2_mc_fullx_fully_8x8

  864433 - Assigned to Gentoo Security
• <media-video/mediainfo-22.09 <media-libs/libmediainfo-22.09: fuzzing fixes

  875374 - Assigned to Gentoo Security
• <media-libs/exempi-2.6.2: Multiple vulnerabilities

  878757 - Assigned to Gentoo Security
• <media-libs/libde265-1.0.11: multiple vulnerabilities

  889876 - Assigned to Gentoo Security
• media-libs/opusfile: null pointer dereference

  891785 - Assigned to Gentoo Security
• <media-libs/assimp-5.2.5-r1: heap use after free

  891787 - Assigned to Gentoo Security
• <media-libs/libheif-1.15.2: buffer overflow

  897904 - Assigned to Gentoo Security
• media-libs/freeimage: oob read

  897912 - Assigned to Gentoo Security
• <media-libs/openimageio-2.4.12.0: multiple vulnerabilities

  903807 - Assigned to Gentoo Security
• <media-libs/tiff-4.5.1: multiple vulnerabilities

  904424 - Assigned to Gentoo Security
• media-libs/libmp4v2: multiple vulnerabilities

  905092 - Assigned to Gentoo Security
• media-libs/libjxl: multiple vulnerabilities

  905094 - Assigned to Gentoo Security
• media-libs/libde265: multiple vulnerabilities

  905099 - Assigned to Gentoo Security
• media-libs/allegro: denial of service via buffer overflow

  905104 - Assigned to Gentoo Security
• <media-libs/harfbuzz-7.1.0: DoS via excessive algorithmic complexity

  905310 - Assigned to Gentoo Security
• media-libs/libjxl: assertion failure

  905393 - Assigned to Gentoo Security
• <media-libs/opencv-4.8.0: multiple vulnerabilities

  906106 - Assigned to Gentoo Security
• media-libs/libmp4v2: memory leaks

  907275 - Assigned to Gentoo Security
• <media-libs/libjpeg-turbo-3.0.0: buffer overflow in lossless 12-bit image parsing

  907385 - Assigned to Gentoo Security
• <media-libs/openexr-3.1.11: oss-fuzz stack buffer overread

  908257 - Assigned to Gentoo Security
• <media-libs/libjxl-0.8.2: integer underflow leading to infinite loop

  908520 - Assigned to Gentoo Security
• media-libs/libsndfile: multiple vulnerabilities

  914450 - Assigned to Gentoo Security
• media-libs/audiofile: heap-buffer-overflow in FLAC.cpp:133:11

  915196 - Assigned to Gentoo Security
• <media-libs/openexr-3.1.12: oss fuzz issues

  916514 - Assigned to Gentoo Security
• <media-video/mediainfo-23.10 <media-libs/libmediainfo-23.10: DoS in parsing certain codecs

  917612 - Assigned to Gentoo Security
• <media-libs/openimageio-2.5.4.0: multiple vulnerabilities

  917679 - Assigned to Gentoo Security
• media-libs/libde265: buffer overflow(s)

  917764 - Assigned to Gentoo Security
• media-libs/gstreamer: multiple vulnerabilities

  917791 - Assigned to Gentoo Security
• <media-libs/gst-plugins-bad-1.22.11-r1: multiple vulnerabilities

  918095 - Assigned to Gentoo Security
• media-libs/tiff: crafted input results in out-of-memory

  918403 - Assigned to Gentoo Security
• media-libs/giflib: buffer overflow

  918539 - Assigned to Gentoo Security
• <media-libs/exempi-2.5.1: multiple vulnerabilities

  918620 - Assigned to Gentoo Security
• media-libs/freeimage: multiple vulnerabilities

  918621 - Assigned to Gentoo Security
• <media-libs/jasper-4.1.2: Invalid memory write

  922075 - Assigned to Gentoo Security
• <media-libs/dav1d-1.4.0: Potential integer overflow with extremely large frame size

  926141 - Assigned to Gentoo Security