Lucene search
K

153 matches found

OSV
OSV
added 2017/12/27 5:8 p.m.3 views

DEBIAN-CVE-2017-17879

In ImageMagick 7.0.7-16 Q16 x8664 2017-12-21, there is a heap-based buffer over-read in ReadOneMNGImage in coders/png.c, related to length calculation and caused by an off-by-one error...

8.8CVSS7.4AI score0.02885EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2017/12/13 4:48 p.m.5 views

OpenJDK: reading of unprocessed image data in JPEGImageReader (2D, 8169209)

It was discovered that the JPEGImageReader implementation in the 2D component of OpenJDK would, in certain cases, read all image data even if it was not used later. A specially crafted image could cause a Java application to temporarily use an excessive amount of CPU and memory...

5.3CVSS7.3AI score0.0345EPSS
Exploits0References4
CNVD
CNVD
added 2017/09/18 12:0 a.m.2 views

GraphicsMagick coders/pnm.c file denial of service vulnerability

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A security vulnerability exists in ReadPNMImage in the coders/pnm.c file in GraphicsMagick version 1.3.26. An attacker can exploit this vulnerability to caus...

6.5CVSS7.1AI score0.02358EPSS
Exploits0References1
OSV
OSV
added 2017/09/17 12:0 a.m.3 views

UBUNTU-CVE-2017-14531

ImageMagick 7.0.7-0 has a memory exhaustion issue in ReadSUNImage in coders/sun.c...

6.5CVSS6.9AI score0.02231EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2017/08/23 9:17 a.m.7 views

OpenJDK: reading of unprocessed image data in JPEGImageReader (2D, 8169209)

It was discovered that the JPEGImageReader implementation in the 2D component of OpenJDK would, in certain cases, read all image data even if it was not used later. A specially crafted image could cause a Java application to temporarily use an excessive amount of CPU and memory...

5.3CVSS7.3AI score0.0345EPSS
Exploits0References4
OSV
OSV
added 2017/08/18 12:29 p.m.1 views

UBUNTU-CVE-2017-12936

The ReadWMFImage function in coders/wmf.c in GraphicsMagick 1.3.26 has a use-after-free issue for data associated with exception reporting...

8.8CVSS6.8AI score0.25065EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2017/08/15 7:58 p.m.7 views

OpenJDK: reading of unprocessed image data in JPEGImageReader (2D, 8169209)

It was discovered that the JPEGImageReader implementation in the 2D component of OpenJDK would, in certain cases, read all image data even if it was not used later. A specially crafted image could cause a Java application to temporarily use an excessive amount of CPU and memory...

5.3CVSS7.3AI score0.0345EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/08/14 9:48 a.m.7 views

OpenJDK: reading of unprocessed image data in JPEGImageReader (2D, 8169209)

It was discovered that the JPEGImageReader implementation in the 2D component of OpenJDK would, in certain cases, read all image data even if it was not used later. A specially crafted image could cause a Java application to temporarily use an excessive amount of CPU and memory...

5.3CVSS7.3AI score0.0345EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/08/07 3:5 p.m.6 views

OpenJDK: reading of unprocessed image data in JPEGImageReader (2D, 8169209)

It was discovered that the JPEGImageReader implementation in the 2D component of OpenJDK would, in certain cases, read all image data even if it was not used later. A specially crafted image could cause a Java application to temporarily use an excessive amount of CPU and memory...

5.3CVSS7.3AI score0.0345EPSS
Exploits0References4
CNVD
CNVD
added 2017/08/07 12:0 a.m.2 views

ImageMagick 'ReadMATImage' Function Denial of Service Vulnerability

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A security vulnerability exists in the 'ReadMATImage' function in the coders/mat.c file in ImageMagick version 7.0.6-1...

6.5CVSS6.6AI score0.01236EPSS
Exploits0References1
OSV
OSV
added 2017/07/27 6:29 a.m.2 views

DEBIAN-CVE-2017-11683

There is a reachable assertion in the Internal::TiffReader::visitDirectory function in tiffvisitor.cpp of Exiv2 0.26 that will lead to a remote denial of service attack via crafted input...

6.5CVSS6.4AI score0.02663EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2017/07/20 4:16 p.m.6 views

OpenJDK: reading of unprocessed image data in JPEGImageReader (2D, 8169209)

It was discovered that the JPEGImageReader implementation in the 2D component of OpenJDK would, in certain cases, read all image data even if it was not used later. A specially crafted image could cause a Java application to temporarily use an excessive amount of CPU and memory...

5.3CVSS7.3AI score0.0345EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/07/20 3:59 p.m.6 views

OpenJDK: reading of unprocessed image data in JPEGImageReader (2D, 8169209)

It was discovered that the JPEGImageReader implementation in the 2D component of OpenJDK would, in certain cases, read all image data even if it was not used later. A specially crafted image could cause a Java application to temporarily use an excessive amount of CPU and memory...

5.3CVSS7.3AI score0.0345EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/02/28 8:19 a.m.2 views

OpenJDK: imageio PNGImageReader failed to honor ignoreMetadata for iTXt and zTXt chunks (2D, 8166988)

It was discovered that the 2D component of OpenJDK performed parsing of iTXt and zTXt PNG image chunks even when configured to ignore metadata. An attacker able to make a Java application parse a specially crafted PNG image could cause the application to consume an excessive amount of memory...

7.5CVSS7.3AI score0.03868EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/02/28 8:19 a.m.18 views

OpenJDK: imageio PNGImageReader failed to honor ignoreMetadata for iTXt and zTXt chunks (2D, 8166988)

It was discovered that the 2D component of OpenJDK performed parsing of iTXt and zTXt PNG image chunks even when configured to ignore metadata. An attacker able to make a Java application parse a specially crafted PNG image could cause the application to consume an excessive amount of memory...

7.5CVSS7.3AI score0.03868EPSS
Exploits0References4
OSV
OSV
added 2017/02/09 5:44 a.m.2 views

USN-3194-1 openjdk-7 vulnerabilities

Karthik Bhargavan and Gaetan Leurent discovered that the DES and Triple DES ciphers were vulnerable to birthday attacks. A remote attacker could possibly use this flaw to obtain clear text data from long encrypted sessions. This update moves those algorithms to the legacy algorithm set and causes...

9.6CVSS6.9AI score0.95707EPSS
Exploits13References13
RedHat Linux
RedHat Linux
added 2017/01/19 2:8 p.m.5 views

OpenJDK: imageio PNGImageReader failed to honor ignoreMetadata for iTXt and zTXt chunks (2D, 8166988)

It was discovered that the 2D component of OpenJDK performed parsing of iTXt and zTXt PNG image chunks even when configured to ignore metadata. An attacker able to make a Java application parse a specially crafted PNG image could cause the application to consume an excessive amount of memory...

7.5CVSS7.3AI score0.03868EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/01/19 1:59 p.m.4 views

OpenJDK: imageio PNGImageReader failed to honor ignoreMetadata for iTXt and zTXt chunks (2D, 8166988)

It was discovered that the 2D component of OpenJDK performed parsing of iTXt and zTXt PNG image chunks even when configured to ignore metadata. An attacker able to make a Java application parse a specially crafted PNG image could cause the application to consume an excessive amount of memory...

7.5CVSS7.3AI score0.03868EPSS
Exploits0References4
OSV
OSV
added 2016/12/13 3:59 p.m.1 views

ALPINE-CVE-2016-5691

The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack of validation of 1 pixel.red, 2 pixel.green, and 3 pixel.blue...

9.8CVSS7.2AI score0.05445EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2016/08/02 4:39 p.m.14 views

libtiff: Out-of-bounds read in tif_getimage.c

tifgetimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service out-of-bounds read via the SamplesPerPixel tag in a TIFF image...

5.5CVSS5.9AI score0.02857EPSS
Exploits0References4
Rows per page
Query Builder