CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-2575
https://notcve.org/view.php?id=CVE-2017-2575
22 Aug 2018 — A vulnerability was found while fuzzing libbpg 0.9.7. It is a NULL pointer dereference issue due to missing check of the return value of function malloc in the BPG encoder. This vulnerability appeared while converting a malicious JPEG file to BPG. Se ha encontrado una vulnerabilidad al hacer fuzzing en libbpg 0.9.7. Se trata de un problema de desreferencia de puntero NULL debido a la falta de comprobación del valor de retorno de la función malloc en el codificador BPG. • http://seclists.org/oss-sec/2017/q2/100 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-476: NULL Pointer Dereference •
CVSS: 8.8EPSS: 1%CPEs: 1EXPL: 1CVE-2018-12447
https://notcve.org/view.php?id=CVE-2018-12447
15 Jun 2018 — The restore_tqb_pixels function in hevc_filter.c in libavcodec, as used in libbpg 0.9.8 and other products, has an integer overflow that leads to a heap-based buffer overflow and remote code execution. La función restore_tqb_pixels en hevc_filter.c en libavcodec, tal y como se emplea en libbpg 0.9.8 y otros productos, tiene un desbordamiento de enteros que conduce a un desbordamiento de búfer basado en memoria dinámica (heap) y a la ejecución remota de código. • https://drive.google.com/open?id=1J3hTt8XHz7u7QDSNYxEuwFZTO6Baggl0 • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2017-14034
https://notcve.org/view.php?id=CVE-2017-14034
16 Nov 2017 — The restore_tqb_pixels function in hevc_filter.c in libavcodec, as used in libbpg 0.9.7 and other products, miscalculates a memcpy destination address, which allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact. La función restore_tqb_pixels en hevc_filter.c en libavcodec, tal y como se emplea en libbpg 0.9.7 y otros productos, no calcula correctamente una dirección de destino de memcpy. Esto permite que atacantes ... • https://github.com/ebel34/bpg-web-encoder/issues/1 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2017-13135
https://notcve.org/view.php?id=CVE-2017-13135
16 Nov 2017 — A NULL Pointer Dereference exists in VideoLAN x265, as used in libbpg 0.9.7 and other products, because the CUData::initialize function in common/cudata.cpp mishandles memory-allocation failure. Existe una desreferencia de puntero NULL en VideoLAN x265, tal y como se emplea en libbpg 0.9.7 y otros productos, ya que la función CUData::initialize en common/cudata.cpp gestiona de manera incorrecta el fallo de asignación de memoria. • http://www.securityfocus.com/bid/101929 • CWE-476: NULL Pointer Dereference •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2017-13136
https://notcve.org/view.php?id=CVE-2017-13136
16 Nov 2017 — The image_alloc function in bpgenc.c in libbpg 0.9.7 has an integer overflow, with a resultant invalid malloc and NULL pointer dereference. La función image_alloc en bpgenc.c en libbpg 0.9.7 tiene un desbordamiento de enteros con un malloc inválido resultante y una desreferencia de puntero NULL. • https://github.com/ebel34/bpg-web-encoder/issues/1 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2017-14795
https://notcve.org/view.php?id=CVE-2017-14795
27 Sep 2017 — The hevc_write_frame function in libbpg.c in libbpg 0.9.7 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) or possibly have unspecified other impact via a crafted BPG file, related to improper interaction with hls_pcm_sample in hevc.c in libavcodec in FFmpeg and put_pcm_var in hevcdsp_template.c in libavcodec in FFmpeg. La función hevc_write_frame en libbpg.c en libbpg 0.9.7 permite que los atacantes remotos causen una denegación de servicio (lectura fuera de l... • https://github.com/leonzhao7/vulnerability/blob/master/An%20Out-of-Bounds%20Read%20%28DoS%29%20Vulnerability%20in%20hevc.c%20of%20libbpg.md • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2017-14796
https://notcve.org/view.php?id=CVE-2017-14796
27 Sep 2017 — The hevc_write_frame function in libbpg.c in libbpg 0.9.7 allows remote attackers to cause a denial of service (integer underflow and application crash) or possibly have unspecified other impact via a crafted BPG file, related to improper interaction with copy_CTB_to_hv in hevc_filter.c in libavcodec in FFmpeg and sao_filter_CTB in hevc_filter.c in libavcodec in FFmpeg. La función hevc_write_frame en libbpg.c en libbpg 0.9.7 permite que los atacantes remotos causen una denegación de servicio (subdesbordamie... • https://github.com/leonzhao7/vulnerability/blob/master/An%20integer%20underflow%20vulnerability%20in%20sao_filter_CTB%20of%20libbpg.md • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 8.8EPSS: 1%CPEs: 1EXPL: 1CVE-2017-14734
https://notcve.org/view.php?id=CVE-2017-14734
25 Sep 2017 — The build_msps function in libbpg.c in libbpg 0.9.7 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted BPG file, related to hevc_decode_init1. La función build_msps en libbpg.c en libbpg 0.9.7 permite que atacantes remotos provoquen una denegación de servicio (desbordamiento de búfer basado en memoria dinámica o heap y cierre inesperado de la aplicación) o, probablemente, provocar cualquier otro tipo... • https://github.com/leonzhao7/vulnerability/blob/master/A%20heap-buffer-overflow%20vulnerability%20in%20hevc_decode_init1%20of%20libbpg.md • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 6%CPEs: 2EXPL: 1CVE-2016-8710
https://notcve.org/view.php?id=CVE-2016-8710
26 Jan 2017 — An exploitable heap write out of bounds vulnerability exists in the decoding of BPG images in Libbpg library. A crafted BPG image decoded by libbpg can cause an integer underflow vulnerability causing an out of bounds heap write leading to remote code execution. This vulnerability can be triggered via attempting to decode a crafted BPG image using Libbpg. Una vulnerabilidad explotable de salto de escritura fuera de límites existe en la decodificación de imágenes BPG en la librería Libbpg. Una imagen BPG man... • http://www.securityfocus.com/bid/95740 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-5637
https://notcve.org/view.php?id=CVE-2016-5637
15 Jul 2016 — The restore_tqb_pixels function in libbpg 0.9.5 through 0.9.7 mishandles the transquant_bypass_enable_flag value, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via a crafted BPG image, related to a "type confusion" issue. La función restore_tqb_pixels en libbpg 0.9.5 hasta la versión 0.9.7 no maneja correctamente el valor transquant_bypass_enable_flag, lo que permite a atacantes remotos ejecutar código arbitrario o provocar una denegación de servi... • http://www.kb.cert.org/vuls/id/123799 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •