CVE-2014-8716

CVE-2014-8716 affects ImageMagick’s JPEG decoder up to version 6.8.9-9. The vulnerability stems from an out-of-bounds memory access during JPEG decoding, allowing local users to cause a denial of service (crash). Affected: ImageMagick before 6.8.9-9; Impact: local DoS. Mitigation: upgrade to 6.8....

CVE-2014-8716

The JPEG decoder in ImageMagick before 6.8.9-9 allows local users to cause a denial of service out-of-bounds memory access and crash...

Debian Security Advisory DSA 3817-1 (jbig2dec - security update)

Multiple security issues have been found in the JBIG2 decoder library, which may lead to lead to denial of service or the execution of arbitrary code if a malformed image file usually embedded in a PDF document is opened. OpenVAS Vulnerability Test $Id: deb3817.nasl 6607 2017-07-07 12:04:25Z...

ImageMagick jng decoder denial of service vulnerability

ImageMagick is a set of open source image processing software. A denial of service vulnerability exists in the jng decoder in ImageMagick. A remote attacker can exploit this vulnerability to construct a malicious file and trick the application into parsing it, crashing the application...

Debian: Security Advisory (DSA-3817-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DEBIAN-CVE-2014-9847

The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact...

CVE-2014-9847

The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact...

CVE-2014-9847

The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact...

Code injection

The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact...

CVE-2014-9847

ImageMagick CVE-2014-9847 concerns the jng decoder. Multiple connected sources confirm a remote denial-of-service possibility: a crafted JNG file can cause the application to crash. The vulnerability affects ImageMagick 6.8.9.9 (jng decoder) and is described in CNVD-2017-04496 as a DoS in the jng...

CVE-2014-9847

The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact...

CVE-2014-9847

The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact...

Important kernel security update: Virtuozzo ReadyKernel patch 14.0 for kernels 3.10.0-327.18.2.vz7.15.2 (Virtuozzo 7.0.0), 3.10.0-327.36.1.vz7.18.7 (Virtuozzo 7.0.1), and 3.10.0-327.36.1.vz7.20.18 (Virtuozzo 7.0.3)

The cumulative Virtuozzo ReadyKernel patch updated with security fixes. The patch applies to Virtuozzo versions 7.0.0, 7.0.1, and 7.0.3. Vulnerability id: CVE-2017-6074 A use-after-free flaw was found in the way the Linux kernel's Datagram Congestion Control Protocol DCCP implementation freed SKB...

Cisco NetFlow Generation Appliance SCTP decoder denial of service vulnerability

Cisco NetFlow Generation Appliance is the United States Cisco Cisco company's set of scalable for data centers to achieve traffic visibility solutions. A denial of service vulnerability exists in the processing of SCTP messages by the SCTP decoder in the Cisco NetFlow Generation Appliance. A remo...

SUSE SLES11 Security Update : openssl (SUSE-SU-2017:0585-1)

This update for openssl fixes the following issues contained in the OpenSSL Security Advisory 26 Jan 2017 bsc1021641 Security issues fixed : - CVE-2016-7056: A local ECSDA P-256 timing attack that might have allowed key recovery was fixed bsc1019334 - CVE-2016-8610: A remote denial of service in...

CVE-2017-3826

A vulnerability in the Stream Control Transmission Protocol SCTP decoder of the Cisco NetFlow Generation Appliance NGA with software before 1.11a could allow an unauthenticated, remote attacker to cause the device to hang or unexpectedly reload, causing a denial of service DoS condition. The...

CVE-2017-3826

A vulnerability in the Stream Control Transmission Protocol SCTP decoder of the Cisco NetFlow Generation Appliance NGA with software before 1.11a could allow an unauthenticated, remote attacker to cause the device to hang or unexpectedly reload, causing a denial of service DoS condition. The...

Race condition

A vulnerability in the Stream Control Transmission Protocol SCTP decoder of the Cisco NetFlow Generation Appliance NGA with software before 1.11a could allow an unauthenticated, remote attacker to cause the device to hang or unexpectedly reload, causing a denial of service DoS condition. The...

CVE-2017-3826

Cisco NetFlow Generation Appliances NGA 3140, NGA 3240, and NGA 3340 contain a DoS vulnerability in the SCTP decoder due to incomplete validation of SCTP packets on monitored data ports. An unauthenticated remote attacker can cause the device to hang or reload by sending malformed SCTP packets; p...

UBUNTU-CVE-2017-5502

libjasper/jp2/jp2dec.c in JasPer 1.900.17 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...