12612 matches found
Astra Linux – Vulnerability in Chromium
Insufficient policy enforcement in Cryptohome’s Google Chrome version prior to 88.0.4324.96 allowed a local attacker to perform OS-level privilege escalation through a crafted file...
Astra Linux – Vulnerability in exiv2
In Exiv2 0.26, jpgimage.cpp allows remote attackers to cause a denial of service image.cpp Exiv2::Internal::stringFormat out-of-bounds read via a crafted file...
Astra Linux – Vulnerability in openexr
There is a flaw in OpenEXR’s ImfDeepScanLineInputFile functionality in versions prior to 3.0.5. An attacker who can submit a crafted file to an application that uses OpenEXR may cause a out-of-bounds read vulnerability. The most significant risk of this flaw is the disruption of the application’s...
Astra Linux – Vulnerability in Tiff
A stack buffer overflow vulnerability was discovered in the tiffcp.c file of Libtiffs, within the main function. This vulnerability allows an attacker to submit a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue. This may result in memory corruption and cause a syste...
Astra Linux – Vulnerability in imagemagick
A flaw was discovered in ImageMagick, specifically in the MagickCore/visual-effects.c file. An attacker who submits a crafted file processed by ImageMagick could trigger undefined behavior, including division by zero in mathematics. The greatest threat of this vulnerability is to system...
Astra Linux – Vulnerability in Graphviz
A buffer overflow in the Graphviz Graph Visualization Tools, starting from the commit ID f8b9e035 and earlier, allows remote attackers to execute arbitrary code or cause a denial of service application crash by loading a crafted file into the "lib/common/shapes.c" component...
Astra Linux – Vulnerability in libxml2
There is a flaw in libxml2’s xmllint in versions before 2.9.11. An attacker who can submit a crafted file for processing by xmllint could trigger a use-after-free. The most significant impact of this flaw is on confidentiality, integrity, and availability...
Astra Linux – Vulnerability in openexr
There is a flaw in OpenEXR in versions before 3.0.0-beta. An attacker who can submit a crafted file to be processed by OpenEXR could cause an integer overflow, potentially leading to problems with the application’s functionality and availability...
Astra Linux – Vulnerability in imagemagick
A flaw was discovered in ImageMagick’s MagickCore/segment.c file. An attacker who submits a crafted file processed by ImageMagick could trigger undefined behavior, specifically a division by zero in mathematics. This likely results in a disruption to the application’s functionality, but it may al...
Astra Linux – Vulnerability in libde265
Libde265 v1.0.4 contains a segmentation fault in the applysaointernal function, which can be exploited through a properly crafted file...
Astra Linux – Vulnerability in Chromium
Insufficient policy enforcement in the Installer component of Google Chrome prior to version 92.0.4515.107 allowed a remote attacker to perform local privilege escalation through a crafted file...
Astra Linux – Vulnerability in exempi
The XMP Toolkit SDK version 2020.1 and earlier is affected by a buffer overflow vulnerability that may lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction, as the victim must open a specially crafted file...
Astra Linux – Vulnerability in libde265
Libde265 v1.0.4 contains a heap buffer overflow in the mcluma function, which can be exploited through a specially crafted file...
Astra Linux – Vulnerability in Chromium
Using "after free" in DevTools in Google Chrome before version 88.0.4324.96 allowed a local attacker to potentially perform a sandbox escape by using a specially crafted file...
Astra Linux – Vulnerability in libgsf
There is an integer overflow vulnerability in the Compound Document Binary File format parser of the GNOME Project G Structured File Library libgsf version v1.14.52. A specially crafted file can lead to an integer overflow when processing the directory from the file, allowing an out-of-bounds ind...
Astra Linux – Vulnerability in hdf5
There is an out-of-bounds write vulnerability in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially crafted GIF file can lead to code execution. An attacker can provide a malicious file to exploit this vulnerability...
Astra Linux – Vulnerability in exempi
The XMP Toolkit SDK version 2020.1 and earlier is affected by a buffer overflow vulnerability that may lead to local application denial of service in the context of the current user. Exploitation requires user interaction, as the victim must open a specially crafted file...
Astra Linux – Vulnerability in libde265
Libde265 v1.0.4 contains a heap buffer overflow vulnerability in the putepel16fallback function, which can be exploited through a specially crafted file...
Astra Linux – Vulnerability in libde265
Libde265 v1.0.4 contains a global buffer overflow in the decodeCABACbit function, which can be exploited through a specially crafted file...
Astra Linux – Vulnerability in exempi
The XMP Toolkit SDK version 2020.1 and earlier is affected by an improper input validation vulnerability, which may lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction, as the victim must open a specially crafted file...