15 matches found
EUVD-2005-3349
Malware in sbrugna...
Buffer Over-read
Overview Affected versions of this package are vulnerable to Buffer Over-read via improper output length handling in the GIF LZW decoding process. An attacker can access limited portions of uninitialized memory by providing a specially crafted GIF file that triggers the inclusion of arbitrary...
PT-2025-16256 · Undefined · Undefined
Уязвимость утилиты gifinto библиотеки для работы с GIF файлами GIFLIB связана с ошибками в обработке относительного пути к каталогу. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, выполнить произвольный код путем записи специально сформированного GIF-файла в произвольн...
The vulnerability of the gif2rgb converter (util/gif2rgb.c) in the GIFLIB library allows a hacker to induce a service failure.
The vulnerability of the gif2rgb converter util/gif2rgb.c in the GIFLIB library is related to a memory leak. Exploiting this vulnerability could allow an attacker to cause a service failure by using specially created GIF files...
PT-2022-26867 · Gifdec · Gifdec
Name of the Vulnerable Software and Affected Versions: Gifdec version 1dcbae19363597314f6623010cc80abad4e47f7c Description: The issue is related to an out-of-bounds read in the read image data function. This problem occurs when the software attempts to parse a specially crafted Gif file...
SUSE SLED12 / SLES12 Security Update : libqt5-qtbase (SUSE-SU-2020:0317-1)
This update for libqt5-qtbase fixes the following issues : Security issues fixed : CVE-2020-0569: Fixed a potential local code execution by loading plugins from CWD bsc1161167. CVE-2018-19870: Fixed an improper check in QImage allocation which could allow Denial of Service when opening crafted gi...
Security update for libqt5-qtbase (moderate)
openSUSE Security Update: Security update for libqt5-qtbase Announcement ID: openSUSE-SU-2019:1239-1 Rating: moderate References: 1108889 1118597 1129662 1130246 Cross-References: CVE-2018-19870 CVE-2018-19872 Affected Products: openSUSE Leap 15.0 An update that solves two vulnerabilities and has...
SUSE-SU-2018:0260-1 Security update for gd
This update for gd fixes one issues. This security issue was fixed: - CVE-2018-5711: Prevent integer signedness error that could have lead to an infinite loop via a crafted GIF file allowing for DoS bsc1076391...
CVE-2015-7555
Heap-based buffer overflow in giffix.c in giffix in giflib 5.1.1 allows attackers to cause a denial of service program crash via crafted image and logical screen width fields in a GIF file...
Debian Security Advisory DSA 2750-1 (imagemagick - buffer overflow)
Anton Kortunov reported a heap corruption in ImageMagick, a program collection and library for converting and manipulating image files. Crafted GIF files could cause ImageMagick to crash, potentially leading to arbitrary code execution. The oldstable distribution squeeze is not affected by this...
PT-2013-4200 · Microsoft · Windows 7 +8
Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP SP2 and SP3 Microsoft Windows Server 2003 SP2 Microsoft Windows Vista SP2 Microsoft Windows Server 2008 SP2 and R2 SP1 Microsoft Windows 7 SP1 Microsoft Windows 8 Microsoft Windows Server 2012 Description: A remote code...
plug-in): Heap-based buffer overflow by loading certain GIF images
Integer overflow in the ReadImage function in plug-ins/common/file-gif-load.c in the GIF image format plug-in in GIMP 2.8.x and earlier allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via crafted height and len properties in a GIF image...
CVE-2009-2660
Multiple integer overflows in CamlImages 2.2 might allow context-dependent attackers to execute arbitrary code via images containing large width and height values that trigger a heap-based buffer overflow, related to 1 crafted GIF files gifread.c and 2 crafted JPEG files jpegread.c, a different...
Debian DSA-1625-1 : cupsys - buffer overflows
Several remote vulnerabilities have been discovered in the Common Unix Printing System CUPS. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-0053 Buffer overflows in the HP-GL input filter allowed to possibly run arbitrary code through crafted HP-GL...
EUVD-2008-0992
Heap-based buffer overflow in the GIF library in the WebKit framework for Google Android SDK m3-rc37a and earlier allows remote attackers to execute arbitrary code via a crafted GIF file whose logical screen height and width are different than the actual height and width...