2249 matches found
SUSE SLED12 / SLES12 Security Update : java-1_8_0-openjdk (SUSE-SU-2017:0346-1)
This update for java-180-openjdk fixes the following issues: Oracle Critical Patch Update of January 2017 bsc1020905 Upgrade to version jdk8u121 icedtea 3.3.0 : - S8138725: Add options for Javadoc generation - S8140353: Improve signature checking - S8151934, CVE-2017-3231: Resolve class resolutio...
CVE-2016-8694
The bmreadbodybmp function in bitmapio.c in potrace before 1.13 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted BMP image, a different vulnerability than CVE-2016-8695 and CVE-2016-8696...
SUSE-SU-2017:0346-1 Security update for java-1_8_0-openjdk
This update for java-180-openjdk fixes the following issues: Oracle Critical Patch Update of January 2017 bsc1020905 Upgrade to version jdk8u121 icedtea 3.3.0: - S8138725: Add options for Javadoc generation - S8140353: Improve signature checking - S8151934, CVE-2017-3231: Resolve class resolution...
CVE-2017-5014
Heap buffer overflow during image processing in Skia in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...
UBUNTU-CVE-2017-5014
Heap buffer overflow during image processing in Skia in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...
chromium-browser: heap overflow in skia
Heap buffer overflow during image processing in Skia in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...
CVE-2017-5014
Heap buffer overflow during image processing in Skia in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...
CVE-2017-2953
CVE-2017-2953 refers to memory corruption in the “image conversion” component when processing TIFF images in Adobe Acrobat/Reader. Affected products include Acrobat/Reader versions 11.0.18 and earlier, 15.006.30244 and earlier, and 15.020.20042 and earlier. Successful exploitation could result in...
CVE-2017-2942
Adobe Acrobat Reader is affected by CVE-2017-2942 due to a heap overflow when processing TIFF image data in certain versions (e.g., 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier). Successful exploitation could lead to arbitrary code execution. This CVE is corroborated by...
ImageMagick Buffer Overflow Vulnerability (CNVD-2017-00075)
ImageMagick is an open source image viewing and editing tool for Unix/Linux platforms. ImageMagick suffers from a buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code in the context of an affected application...
[SECURITY] [DSA 3746-1] graphicsmagick security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3746-1 [email protected] https://www.debian.org/security/ Luciano Bello December 24, 2016 https://www.debian.org/security/faq -...
Debian Security Advisory DSA 3746-1 (graphicsmagick - security update)
Several vulnerabilities have been discovered in GraphicsMagick, a collection of image processing tool, which can cause denial of service attacks, remote file deletion, and remote command execution. This security update removes the full support of PLT/Gnuplot decoder to prevent Gnuplot-shell based...
FreeBSD : Pillow -- multiple vulnerabilities (bc4898d5-a794-11e6-b2d3-60a44ce6887b)
Pillow reports : Pillow prior to 3.3.2 may experience integer overflow errors in map.c when reading specially crafted image files. This may lead to memory disclosure or corruption. Pillow prior to 3.3.2 and PIL 1.1.7 at least do not check for negative image sizes in ImagingNew in Storage.c. A...
ImageMagick Denial of Service Vulnerability (CNVD-2016-11687)
ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. ImageMagick has a denial of service vulnerability that can be exploited by attackers to cause a denial of service...
CmsEasy front Desk arbitrary code execution vulnerability
Source link: https://xianzhi.aliyun.com/forum/read/215.html 在补丁页面http://www.cmseasy.cn/patch/show1116.html下载补丁CmsEasyforUploads20161012.zip Modified files no more 通过diff发现补丁中lib/default/toolact.php 392 row cutimageactionfunction is commented out Take a look at this function php /function...
PHP LibGD Stack Buffer Overflow Vulnerability
libGD is an open source library for dynamically creating images , it supports the creation of charts, graphs and thumbnails and so on. PHP LibGD suffers from a stack buffer overflow vulnerability that allows remote attackers to submit special requests and conduct denial of service attacks...
[SECURITY] Fedora 23 Update: python-pillow-3.0.0-6.fc23
Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt , devel developme...
GraphicsMagick Heap Overflow Vulnerability
GraphicsMagick is the Swiss Army Knife of image processing. The short and compact code provides a robust and efficient collection of tools and libraries. GraphicsMagick WPG format reader fails to check if a color mapping table entry is greater than 256, leading to a potential heap overflow...
ImageMagick Denial of Service Vulnerability (CNVD-2016-08684)
ImageMagick is the United States ImageMagick Studio company's set of open source image processing software. A denial of service vulnerability exists in ImageMagick, which can be exploited by attackers to cause a denial of service...
[SECURITY] Fedora 24 Update: python-pillow-3.2.0-3.fc24
Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt , devel developme...