207 matches found
OpenJDK: Excessive memory allocation in CMap when reading TrueType font (2D, 8225597)
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: 2D. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...
Important: Red Hat Security Advisory: java-1.8.0-openjdk security update
An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
OpenJDK: Excessive memory allocation in CMap when reading TrueType font (2D, 8225597)
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: 2D. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...
Teeworlds integer overflow vulnerability (CNVD-2019-12514)
Teeworlds is a free online multiplayer game. An integer overflow vulnerability exists in CMap::Load in engine/shared/map.cpp in Teeworlds 0.7.2, which stems from a number generated by a networked system or product that does not properly compute or convert, and which can be exploited by an attacke...
CVE-2019-10877
In Teeworlds 0.7.2, there is an integer overflow in CMap::Load in engine/shared/map.cpp that can lead to a buffer overflow, because multiplication of width and height is mishandled...
DEBIAN-CVE-2019-10877
In Teeworlds 0.7.2, there is an integer overflow in CMap::Load in engine/shared/map.cpp that can lead to a buffer overflow, because multiplication of width and height is mishandled...
UBUNTU-CVE-2019-10877
In Teeworlds 0.7.2, there is an integer overflow in CMap::Load in engine/shared/map.cpp that can lead to a buffer overflow, because multiplication of width and height is mishandled...
Integer overflow
In Teeworlds 0.7.2, there is an integer overflow in CMap::Load in engine/shared/map.cpp that can lead to a buffer overflow, because multiplication of width and height is mishandled...
CVE-2019-10877
In Teeworlds 0.7.2, there is an integer overflow in CMap::Load in engine/shared/map.cpp that can lead to a buffer overflow, because multiplication of width and height is mishandled...
CVE-2019-10877
In Teeworlds 0.7.2, there is an integer overflow in CMap::Load in engine/shared/map.cpp that can lead to a buffer overflow, because multiplication of width and height is mishandled...
CVE-2019-10877
In Teeworlds 0.7.2, CVE-2019-10877 describes an integer overflow in CMap::Load() that could lead to a buffer overflow (width×height multiplication mishandling). Several connected advisories document fixes or updates to address this and related CVEs (2019-10879, 2019-10878, 2018-18541). Notably, o...
CVE-2019-10877
In Teeworlds 0.7.2, there is an integer overflow in CMap::Load in engine/shared/map.cpp that can lead to a buffer overflow, because multiplication of width and height is mishandled...
CVE-2019-10877
In Teeworlds 0.7.2, there is an integer overflow in CMap::Load in engine/shared/map.cpp that can lead to a buffer overflow, because multiplication of width and height is mishandled...
poppler/pdf_fuzzer: Use-of-uninitialized-value in CMap::parse2
Project: https://anongit.freedesktop.org/git/poppler/poppler.git Detailed report: https://oss-fuzz.com/testcase?key=5083353053659136 Project: poppler Fuzzer: libFuzzerpopplerpdffuzzer Fuzz target binary: pdffuzzer Job Type: libfuzzermsanpoppler Platform Id: linux Crash Type:...
poppler/pdf_fuzzer: Use-of-uninitialized-value in CMap::addCIDs
Project: https://anongit.freedesktop.org/git/poppler/poppler.git Detailed report: https://oss-fuzz.com/testcase?key=5193460540768256 Project: poppler Fuzzer: libFuzzerpopplerpdffuzzer Fuzz target binary: pdffuzzer Job Type: libfuzzermsanpoppler Platform Id: linux Crash Type:...
poppler/pdf_fuzzer: Use-of-uninitialized-value in CMap::addCIDs
Project: https://anongit.freedesktop.org/git/poppler/poppler.git Detailed report: https://oss-fuzz.com/testcase?key=4571071134040064 Project: poppler Fuzzer: libFuzzerpopplerpdffuzzer Fuzz target binary: pdffuzzer Job Type: libfuzzermsanpoppler Platform Id: linux Crash Type:...
MuPDF Stack Buffer Overflow Vulnerability
MuPDF is a free and open source software library written in C, is the PDF and XPS parsing and rendering engine . A stack buffer overflow vulnerability exists in the pdflookupcmapfull function in pdf/pdf-cmap.c in MuPDF 1.12.0 and earlier versions. An attacker can exploit this vulnerability to...
DEBIAN-CVE-2018-1000038
In Artifex MuPDF 1.12.0 and earlier, a stack buffer overflow in function pdflookupcmapfull in pdf/pdf-cmap.c could allow an attacker to execute arbitrary code via a crafted file...
UBUNTU-CVE-2018-1000038
In Artifex MuPDF 1.12.0 and earlier, a stack buffer overflow in function pdflookupcmapfull in pdf/pdf-cmap.c could allow an attacker to execute arbitrary code via a crafted file...
PT-2018-9226 · Artifex +1 · Mupdf +1
Name of the Vulnerable Software and Affected Versions: Artifex MuPDF versions 1.12.0 and earlier Description: A stack buffer overflow in the pdf lookup cmap full function in pdf/pdf-cmap.c could allow an attacker to execute arbitrary code via a crafted file. This issue affects the MuPDF library,...