2481 matches found
CVE-2014-9666
The ttsbitdecoderinit function in sfnt/ttsbit.c in FreeType before 2.5.4 proceeds with a count-to-size association without restricting the count value, which allows remote attackers to cause a denial of service integer overflow and out-of-bounds read or possibly have unspecified other impact via ...
CVE-2014-9666
The ttsbitdecoderinit function in sfnt/ttsbit.c in FreeType before 2.5.4 proceeds with a count-to-size association without restricting the count value, which allows remote attackers to cause a denial of service integer overflow and out-of-bounds read or possibly have unspecified other impact via ...
Integer overflow
The ttsbitdecoderinit function in sfnt/ttsbit.c in FreeType before 2.5.4 proceeds with a count-to-size association without restricting the count value, which allows remote attackers to cause a denial of service integer overflow and out-of-bounds read or possibly have unspecified other impact via ...
CVE-2014-9666
The ttsbitdecoderinit function in sfnt/ttsbit.c in FreeType before 2.5.4 proceeds with a count-to-size association without restricting the count value, which allows remote attackers to cause a denial of service integer overflow and out-of-bounds read or possibly have unspecified other impact via ...
CVE-2014-9666
CVE-2014-9666 affects FreeType up to version 2.5.3 and 2.5.4 before the patch. The tt_sbit_decoder_init function can proceed with a crafted embedded bitmap without restricting the count, causing integer overflow and out-of-bounds read, leading to DoS (and possibly other impact). A fix is availabl...
UBUNTU-CVE-2014-9666
The ttsbitdecoderinit function in sfnt/ttsbit.c in FreeType before 2.5.4 proceeds with a count-to-size association without restricting the count value, which allows remote attackers to cause a denial of service integer overflow and out-of-bounds read or possibly have unspecified other impact via ...
CVE-2014-9666
The ttsbitdecoderinit function in sfnt/ttsbit.c in FreeType before 2.5.4 proceeds with a count-to-size association without restricting the count value, which allows remote attackers to cause a denial of service integer overflow and out-of-bounds read or possibly have unspecified other impact via ...
DEBIAN-CVE-2014-9330
Integer overflow in tifpackbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service crash via crafted BMP image, related to dimensions, which triggers an out-of-bounds read...
CVE-2014-8386
Multiple stack-based buffer overflows in Advantech AdamView 4.3 and earlier allow remote attackers to execute arbitrary code via a crafted 1 display properties or 2 conditional bitmap parameter in a GNI file...
Stack overflow
Multiple stack-based buffer overflows in Advantech AdamView 4.3 and earlier allow remote attackers to execute arbitrary code via a crafted 1 display properties or 2 conditional bitmap parameter in a GNI file...
UBUNTU-CVE-2014-9330
Integer overflow in tifpackbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service crash via crafted BMP image, related to dimensions, which triggers an out-of-bounds read...
Advantech Adamview Buffer Overflow
Multiple stack-based buffer overflows in Advantech AdamView 4.3 and earlier allow remote attackers to execute arbitrary code via a crafted 1 display properties or 2 conditional bitmap parameter in a GNI file. Recent assessments: wchen-r7 at September 12, 2019 6:07pm UTC reported: Details Accordin...
SeaMonkey < 2.32 Multiple Vulnerabilities
Binary data 8626.prm...
Mozilla Firefox < 35.0 Multiple Vulnerabilities
Binary data 8624.prm...
Mozilla Firefox/SeaMonkey Bitmap Rendering Information Disclosure Vulnerability
Firefox/SeaMonkey is a web browser and newsgroup client released by Mozilla. An information disclosure vulnerability exists in Mozilla Firefox/SeaMonkey, which can be exploited by attackers to obtain sensitive information or launch further attacks...
UBUNTU-CVE-2014-8637
Mozilla Firefox before 35.0 and SeaMonkey before 2.32 do not properly initialize memory for BMP images, which allows remote attackers to obtain sensitive information from process memory via a crafted web page that triggers the rendering of malformed BMP data within a CANVAS element...
Advantech ADAMView Conditional Bitmap Remote Code Execution (CVE-2014-8386)
A stack-buffer overflow has been reported in Advantech ADAMView. The vulnerability is due to insufficient validation of conditional bitmaps from a file...
Uninitialized memory use during bitmap rendering — Mozilla
Google security researcher Michal Zalewski reported that when a malformed bitmap image is rendered by the bitmap decoder within a element, memory may not always be properly initialized. The resulting image then uses this uninitialized memory during rendering, allowing data to potentially leak to...
UBUNTU-CVE-2014-0250
Multiple integer overflows in client/X11/xfgraphics.c in FreeRDP allow remote attackers to have an unspecified impact via the width and height to the 1 xfPointerNew or 2 xfBitmapDecompress function, which causes an incorrect amount of memory to be allocated...
Amazon Linux AMI : freetype (ALAS-2011-8)
Multiple input validation flaws were found in the way FreeType processed bitmap font files. If a specially crafted font file was loaded by an application linked against FreeType, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the user runnin...