Lucene search
+L

86 matches found

Tenable Nessus
Tenable Nessus
added 2019/10/01 12:0 a.m.32 views

Ubuntu 16.04 LTS / 18.04 LTS : SDL 2.0 vulnerabilities (USN-4143-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4143-1 advisory. It was discovered that SDL 2.0 mishandled crafted image files resulting in an integer overflow. If a user were tricked into opening a malicio...

8.8CVSS7AI score0.03299EPSS
Exploits6References6
Debian
Debian
added 2019/09/28 9:42 a.m.218 views

[SECURITY] [DLA 1934-1] cimg security update

Package : cimg Version : 1.5.9+dfsg-1+deb8u1 CVE ID : CVE-2018-7588 CVE-2018-7589 CVE-2018-7637 CVE-2018-7638 CVE-2018-7639 CVE-2018-7640 CVE-2018-7641 CVE-2019-1010174 Several issues have been found in cimg, a powerful image processing library. CVE-2019-1010174 is related to a missing string...

9.8CVSS8.6AI score0.04912EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2019/06/28 12:0 a.m.35 views

openSUSE Security Update : SDL2 (openSUSE-2019-1633)

This update for SDL2 fixes the following issues : - Remove the fix for CVE-2019-7637, the modification of function SDLCalculatePitch is only suited for SDL not SDL2, and breaks SDL2 software. bsc1134135 This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Securit...

8.8CVSS6.7AI score0.03112EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2019/06/28 12:0 a.m.29 views

openSUSE: Security Advisory for SDL2 (openSUSE-SU-2019:1632-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS9AI score0.03112EPSS
Exploits1References2
OSV
OSV
added 2019/06/27 5:49 a.m.3 views

OPENSUSE-SU-2019:1633-1 Security update for SDL2

This update for SDL2 fixes the following issues: - Remove the fix for CVE-2019-7637, the modification of function SDLCalculatePitch is only suited for SDL not SDL2, and breaks SDL2 software. bsc1134135 This update was imported from the SUSE:SLE-15:Update update project...

8.8CVSS8.8AI score0.03112EPSS
Exploits1References4
OSV
OSV
added 2019/06/27 5:49 a.m.4 views

OPENSUSE-SU-2019:1632-1 Security update for SDL2

This update for SDL2 fixes the following issues: - Remove the fix for CVE-2019-7637, the modification of function SDLCalculatePitch is only suited for SDL not SDL2, and breaks SDL2 software. bsc1134135 This update was imported from the SUSE:SLE-15:Update update project...

8.8CVSS8.8AI score0.03112EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2019/06/24 12:0 a.m.34 views

SUSE SLED15 / SLES15 Security Update : SDL2 (SUSE-SU-2019:1605-1)

This update for SDL2 fixes the following issues : Remove the fix for CVE-2019-7637, the modification of function SDLCalculatePitch is only suited for SDL not SDL2, and breaks SDL2 software. bsc1134135 Note that Tenable Network Security has extracted the preceding description block directly from t...

8.8CVSS6.8AI score0.03112EPSS
Exploits1References5
OSV
OSV
added 2019/06/21 8:24 a.m.17 views

SUSE-SU-2019:1605-1 Security update for SDL2

This update for SDL2 fixes the following issues: - Remove the fix for CVE-2019-7637, the modification of function SDLCalculatePitch is only suited for SDL not SDL2, and breaks SDL2 software. bsc1134135...

8.8CVSS8.7AI score0.03112EPSS
Exploits1References4
Prion
Prion
added 2019/06/03 7:29 p.m.16 views

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Studio Photo 3.6.6. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS7.8AI score0.03422EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/06/03 6:15 p.m.65 views

CVE-2019-6748

Foxit Studio Photo 3.6.6 (and prior) is affected by CVE-2019-6748 due to an out-of-bounds write in the EZI file parser that can lead to remote code execution. The vulnerability requires user interaction (target must open a malicious page/file). Root cause: improper validation during EZI file hand...

7.8CVSS7.8AI score0.03422EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/06/03 6:15 p.m.22 views

CVE-2019-6748

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Studio Photo 3.6.6. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.8AI score0.03422EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.36 views

EulerOS Virtualization 3.0.1.0 : SDL (EulerOS-SA-2019-1469)

According to the versions of the SDL package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - SDL Simple DirectMedia Layer through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMSADPCM in audio/SDLwave.c...

8.8CVSS7AI score0.03299EPSS
Exploits8References9
OpenVAS
OpenVAS
added 2019/04/24 12:0 a.m.35 views

openSUSE: Security Advisory for SDL2 (openSUSE-SU-2019:1261-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.9AI score0.03299EPSS
Exploits11References2
OpenVAS
OpenVAS
added 2019/04/18 12:0 a.m.38 views

openSUSE: Security Advisory for SDL (openSUSE-SU-2019:1223-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.9AI score0.03299EPSS
Exploits11References2
Tenable Nessus
Tenable Nessus
added 2019/04/16 12:0 a.m.34 views

SUSE SLED15 / SLES15 Security Update : SDL2 (SUSE-SU-2019:0950-1)

This update for SDL2 fixes the following issues : Security issues fixed : CVE-2019-7572: Fixed a buffer over-read in IMAADPCMnibble in audio/SDLwave.c.bsc1124806. CVE-2019-7578: Fixed a heap-based buffer over-read in InitIMAADPCM in audio/SDLwave.c bsc1125099. CVE-2019-7576: Fixed heap-based buff...

8.8CVSS6.9AI score0.03299EPSS
Exploits11References34
Tenable Nessus
Tenable Nessus
added 2019/04/09 12:0 a.m.46 views

SUSE SLED12 / SLES12 Security Update : SDL (SUSE-SU-2019:0899-1)

This update for SDL fixes the following issues : Security issues fixed : CVE-2019-7572: Fixed a buffer over-read in IMAADPCMnibble in audio/SDLwave.c.bsc1124806. CVE-2019-7578: Fixed a heap-based buffer over-read in InitIMAADPCM in audio/SDLwave.c bsc1125099. CVE-2019-7576: Fixed heap-based buffe...

8.8CVSS6.9AI score0.03299EPSS
Exploits11References34
OSV
OSV
added 2019/04/08 9:10 a.m.8 views

SUSE-SU-2019:0899-1 Security update for SDL

This update for SDL fixes the following issues: Security issues fixed: - CVE-2019-7572: Fixed a buffer over-read in IMAADPCMnibble in audio/SDLwave.c.bsc1124806. - CVE-2019-7578: Fixed a heap-based buffer over-read in InitIMAADPCM in audio/SDLwave.c bsc1125099. - CVE-2019-7576: Fixed heap-based...

8.8CVSS8.7AI score0.03299EPSS
Exploits11References23
OSV
OSV
added 2019/04/05 6:12 p.m.14 views

MGASA-2019-0127 Updated SDL12 packages fix security vulnerability

This release fixes various buffer overflows when parsing or processing damaged Waveform audio and BMP image files. - Fix CVE-2019-7577 a buffer overread in MSADPCMdecode rhbz1676510 - Fix CVE-2019-7575 a buffer overwrite in MSADPCMdecode rhbz1676744 - Fix CVE-2019-7574 a buffer overread in...

8.8CVSS8.6AI score0.03299EPSS
Exploits8References3
Tenable Nessus
Tenable Nessus
added 2019/04/02 12:0 a.m.43 views

EulerOS 2.0 SP2 : SDL (EulerOS-SA-2019-1126)

According to the versions of the SDL packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - SDL Simple DirectMedia Layer through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMSADPCM in audio/SDLwave.c outside the...

8.8CVSS7AI score0.03299EPSS
Exploits8References9
Tenable Nessus
Tenable Nessus
added 2019/04/02 12:0 a.m.50 views

EulerOS 2.0 SP5 : SDL (EulerOS-SA-2019-1151)

According to the versions of the SDL packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - SDL Simple DirectMedia Layer through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMSADPCM in audio/SDLwave.c outside the...

8.8CVSS7AI score0.03299EPSS
Exploits8References9
Rows per page
Query Builder