CVE-2020-36430
- EPSS 0.38%
- Veröffentlicht 20.07.2021 07:15:07
- Zuletzt bearbeitet 21.11.2024 05:29:29
libass 0.15.x before 0.15.1 has a heap-based buffer overflow in decode_chars (called from decode_font and process_text) because the wrong integer data type is used for subtraction.
CVE-2020-24994
- EPSS 1.58%
- Veröffentlicht 23.03.2021 20:15:13
- Zuletzt bearbeitet 21.11.2024 05:16:24
Stack overflow in the parse_tag function in libass/ass_parse.c in libass before 0.15.0 allows remote attackers to cause a denial of service or remote code execution via a crafted file.
CVE-2020-26682
- EPSS 0.45%
- Veröffentlicht 16.10.2020 14:15:11
- Zuletzt bearbeitet 21.11.2024 05:20:14
In libass 0.14.0, the `ass_outline_construct`'s call to `outline_stroke` causes a signed integer overflow.
CVE-2016-7969
- EPSS 5.28%
- Veröffentlicht 03.03.2017 16:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The wrap_lines_smart function in ass_render.c in libass before 0.13.4 allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors, related to "0/3 line wrapping equalization."
CVE-2016-7970
- EPSS 1.24%
- Veröffentlicht 03.03.2017 16:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
Buffer overflow in the calc_coeff function in libass/ass_blur.c in libass before 0.13.4 allows remote attackers to cause a denial of service via unspecified vectors.
CVE-2016-7972
- EPSS 2.34%
- Veröffentlicht 03.03.2017 16:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The check_allocations function in libass/ass_shaper.c in libass before 0.13.4 allows remote attackers to cause a denial of service (memory allocation failure) via unspecified vectors.