Ubuntu 18.04 ESM : Leptonica vulnerability (USN-5143-1)

The remote Ubuntu 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5143-1 advisory. It was discovered that Leptonica incorrectly handled certain image files. An attacker could possibly use this issue to execute arbitrary code or other unspecified...

Fedora 27 : leptonica / mingw-leptonica (2018-cbf621a53c)

This update fixes CVE-2017-18196. ---- This update backports security fixes for CVE-2018-3836, CVE-2018-7186 and CVE-2018-7247. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically...

Fedora Update for mingw-leptonica FEDORA-2018-cbf621a53c

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 26 : leptonica / mingw-leptonica (2018-78570112db)

This update fixes CVE-2017-18196. ---- This update backports security fixes for CVE-2018-3836, CVE-2018-7186 and CVE-2018-7247. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically...

Fedora Update for leptonica FEDORA-2018-78570112db

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for leptonica FEDORA-2018-cbf621a53c

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : leptonica (openSUSE-2018-226)

This update for leptonica fixes the following issues : - CVE-2018-7247: Fixed a buffer overflow in in src/viewfiles.c with unsanitized input rootname boo1081631 - CVE-2018-7186: Fixed multiple stack-based buffer overflows in gplotRead and ptaReadStream boo1081576 - CVE-2018-3836: Added additional...

CVE-2018-7247

An issue was discovered in pixHtmlViewer in prog/htmlviewer.c in Leptonica before 1.75.3. Unsanitized input rootname can overflow a buffer, leading potentially to arbitrary code execution or possibly unspecified other impact...

CVE-2018-7247

An issue was discovered in pixHtmlViewer in prog/htmlviewer.c in Leptonica before 1.75.3. Unsanitized input rootname can overflow a buffer, leading potentially to arbitrary code execution or possibly unspecified other impact...

UBUNTU-CVE-2018-7247

An issue was discovered in pixHtmlViewer in prog/htmlviewer.c in Leptonica before 1.75.3. Unsanitized input rootname can overflow a buffer, leading potentially to arbitrary code execution or possibly unspecified other impact...

CVE-2018-7247

Summary: CVE-2018-7247 affects Leptonica (library) via a buffer overflow in the viewfiles.c path when processing unsanitized input (rootname) in pixHtmlViewer, potentially enabling arbitrary code execution. The issue is documented in multiple advisories and mitigations reference Leptonica 1.75.3 ...