CVE
The listed CVE's are discovered and reported by me
libsndfile | CVE-2024-50612
libsndfile through 1.2.2 has an ogg_vorbis.c vorbis_analysis_wrote out-of-bounds read.
Learn more →libsndfile | CVE-2024-50613
libsndfile through 1.2.2 has a reachable assertion, that may lead to application exit, in mpeg_l3_encode.c mpeg_l3_encoder_close.
Learn more →tinyxml2 | CVE-2024-50614
TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/16, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef.
Learn more →tinyxml2 | CVE-2024-50615
TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/digit, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef.
Learn more →libheif Heap-Buffer-Overflow
libheif latest release 1.19.5 was discovered to contain a heap buffer overflow vulnerability due to a signed integer overflow when calculating stride[targetChannel] * (alreadyRead[i] + j) in heifio/decoder_jpeg.cc:425 loadJPEG() when parsing a specially crafted JPEG image file. This vulnerability can lead to Denial of Service of possible code execution
Learn more →Videolan x265 Integer Overflow
The latest release of x265 library version 4.1 is discovered to contain a signed integer overflow vulnerability when trying to encode a specially crafted HEVC file. The vulnerability exists in the determineLevel() function in x265/source/encoder/level.cpp:117 when calculating the result of uint32_t lumaSamples = param.sourceWidth * param.sourceHeight, This operation leads to an overflow in lumaSamples which eventually leads the program to cause a memory exhaustion leading to Out of Memory DoS.
Learn more →