EUVD-2019-19874

PCHelpWareV2 1.0.0.5 contains a denial of service vulnerability that allows local attackers to crash the application by supplying a malformed image file. Attackers can trigger the vulnerability through the Create SC feature by selecting a crafted BMP file with an oversized buffer, causing the...

CVE-2019-25563

PCHelpWareV2 1.0.0.5 contains a denial of service vulnerability that allows local attackers to crash the application by supplying a malformed image file. Attackers can trigger the vulnerability through the Create SC feature by selecting a crafted BMP file with an oversized buffer, causing the...

CVE-2019-25563 PCHelpWareV2 1.0.0.5 Denial of Service via SC Creation

PCHelpWareV2 1.0.0.5 contains a denial of service vulnerability that allows local attackers to crash the application by supplying a malformed image file. Attackers can trigger the vulnerability through the Create SC feature by selecting a crafted BMP file with an oversized buffer, causing the...

Linux Distros Unpatched Vulnerability : CVE-2016-3619

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The DumpModeEncode function in tifdumpmode.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the -c none option is used, allows remote attackers to caus...

autotrace: heap-buffer overflow via the ReadImage() at input-bmp.c

A buffer overflow flaw was found in the autotrace package. This flaw allows an attacker to trick the user into opening a maliciously crafted BMP image, triggering arbitrary code execution or causing the application to crash...

SUSE CVE-2016-8697

The bmnew function in bitmap.h in potrace before 1.13 allows remote attackers to cause a denial of service divide-by-zero error and crash via a crafted BMP image...

SUSE CVE-2016-8703

Heap-based buffer overflow in the bmreadbodybmp function in bitmapio.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8700, CVE-2016-8701, and CVE-2016-8702...

SUSE CVE-2016-8884

The bmpgetdata function in libjasper/bmp/bmpdec.c in JasPer 1.900.5 allows remote attackers to cause a denial of service NULL pointer dereference by calling the imginfo command with a crafted BMP image. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-8690...

SUSE CVE-2019-15144

In DjVuLibre 3.5.27, the sorting functionality aka GArrayTemplate::sort allows attackers to cause a denial-of-service application crash due to an Uncontrolled Recursion by crafting a PBM image file that is mishandled in libdjvu/GContainer.h...

libjpeg-turbo denial of service vulnerability (CNVD-2018-11844)

libjpeg is a C library that contains JPEG decoding and JPEG encoding functions. libjpeg-turbo is an optimized version of libjpeg. A security vulnerability exists in the 'allowsarray' function in the jmemmgr.c file in libjpeg-turbo version 1.5.90. An attacker can exploit this vulnerability to caus...

DEBIAN-CVE-2018-1152

libjpeg-turbo 1.5.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted BMP image...

ALPINE-CVE-2018-1152

libjpeg-turbo 1.5.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted BMP image...

UBUNTU-CVE-2018-7587

An issue was discovered in CImg v.220. DoS occurs when loading a crafted bmp image that triggers an allocation failure in loadbmp in CImg.h...

UBUNTU-CVE-2018-7588

An issue was discovered in CImg v.220. A heap-based buffer over-read in loadbmp in CImg.h occurs when loading a crafted bmp image...

ImageMagick coders/xbm.c file denial of service vulnerability

ImageMagick is a set of open source image processing software. The software can read, convert and write images in a variety of formats. A security vulnerability exists in the coders/xbm.c file in ImageMagick, which originates from the program's failure to detect EOF End of File. A remote attacker...

jasper: missing jas_matrix_create() parameter checks

The bmpgetdata function in libjasper/bmp/bmpdec.c in JasPer before 1.900.9 allows remote attackers to cause a denial of service NULL pointer dereference by calling the imginfo command with a crafted BMP image...

Potrace Buffer Overflow Vulnerability

Potrace is a set of bitmap image processing tools developed by software developer Peter Selinger. The tool provides the ability to add smoothing effects, free scaling of images and other features. A buffer overflow vulnerability exists in the 'bmreadbodybmp' function in the bitmapio.c file in...

UBUNTU-CVE-2017-7263

The bmreadbodybmp function in bitmapio.c in Potrace 1.14 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly have unspecified other impact via a crafted BMP image. NOTE: this vulnerability exists because of an incomplete fix for...

UBUNTU-CVE-2016-8691

The jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted XRsiz value in a BMP image to the imginfo command...

DEBIAN-CVE-2016-8696

The bmreadbodybmp function in bitmapio.c in potrace before 1.13 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted BMP image, a different vulnerability than CVE-2016-8694 and CVE-2016-8695...