1405 matches found
CVE-2006-0037
ipnatpptp in the PPTP NAT helper netfilter/ipnathelperpptp.c in Linux kernel 2.6.14, and other versions, allows local users to cause a denial of service memory corruption or crash via a crafted outbound packet that causes an incorrect offset to be calculated from pointer arithmetic when non-linea...
CVE-2006-0037
ipnatpptp in the PPTP NAT helper netfilter/ipnathelperpptp.c in Linux kernel 2.6.14, and other versions, allows local users to cause a denial of service memory corruption or crash via a crafted outbound packet that causes an incorrect offset to be calculated from pointer arithmetic when non-linea...
Mandrake Linux Security Advisory : wxPythonGTK (MDKSA-2005:144)
Wouter Hanegraaff discovered that the TIFF library did not sufficiently validate the 'YCbCr subsampling' value in TIFF image headers. Decoding a malicious image with a zero value resulted in an arithmetic exception, which can cause a program that uses the TIFF library to crash. wxPythonGTK uses a...
zgv: Multiple buffer overflows
Background zgv is a console image viewer based on svgalib. Description Multiple arithmetic overflows have been detected in the image processing code of zgv. Impact An attacker could entice a user to open a specially-crafted image file, potentially resulting in execution of arbitrary code with the...
zgv -- exploitable heap overflows
infamous41md reports: zgv uses malloc frequently to allocate memory for storing image data. When calculating how much to allocate, user supplied data from image headers is multiplied and/or added without any checks for arithmetic overflows. We can overflow numerous calculations, and cause small...