Lucene search
+L

1097 matches found

securityvulns
securityvulns
added 2005/10/07 12:0 a.m.26 views

xloadimage buffer overflow.

Hi, While creating a stripped down version of xloadimage, I have discovered three buffer overflows in xloadimage when handling the image title name. Unlike most of the supported image formats in xloadimage, the NIFF image format can store a title name of arbitrary length as part of the image file...

0.3AI score
Exploits0
FreeBSD
FreeBSD
added 2005/10/05 12:0 a.m.34 views

xloadimage -- buffer overflows in NIFF image title handling

Ariel Berkman reports: Unlike most of the supported image formats in xloadimage, the NIFF image format can store a title name of arbitrary length as part of the image file. When xloadimage is processing a loaded image, it is creating a new Image object and then writing the processed image to it. ...

5.1CVSS6.4AI score0.04159EPSS
Exploits0References1
OSV
OSV
added 2005/04/26 12:0 a.m.31 views

DSA-714-1 kdelibs - several

Bulletin has no description...

7.5CVSS6AI score0.05427EPSS
Exploits0
securityvulns
securityvulns
added 2005/04/23 12:0 a.m.50 views

[KDE Security Advisory]: kimgio input validation errors

KDE Security Advisory: kimgio input validation errors Original Release Date: 2005-04-21 URL: http://www.kde.org/info/security/advisory-20050421-1.txt 0. References http://bugs.kde.org/102328 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1046 1. Systems affected: kdelibs as shipped with K...

7.5CVSS0.4AI score0.05427EPSS
Exploits0
OSV
OSV
added 2005/02/14 5:0 a.m.2 views

DEBIAN-CVE-2005-0406

A design flaw in image processing software that modifies JPEG images might not modify the original EXIF thumbnail, which could lead to an information leak of potentially sensitive visual information that had been removed from the main JPEG image...

5.5CVSS6.5AI score0.00465EPSS
Exploits1References1
Symantec
Symantec
added 2005/02/08 12:0 a.m.20 views

Microsoft Windows Media Player Remote PNG Image Format Buffer Overflow Vulnerability

Description A remote buffer overflow vulnerability affects the Portable Network Graphics PNG image format processing functionality of Microsoft Windows Media Player. This issue is due to a failure of the application to properly validate the size of image data prior to copying it into static proce...

8.6AI score
Exploits0References1Affected Software6
RedHat Linux
RedHat Linux
added 2004/12/02 9:42 a.m.4 views

openmotif21 stack overflows in libxpm

Multiple integer overflows in 1 the xpmParseColors function in parse.c, 2 XpmCreateImageFromXpmImage, 3 CreateXImage, 4 ParsePixels, and 5 ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file...

7.5CVSS6.2AI score0.0725EPSS
Exploits0References4
OSV
OSV
added 2004/10/20 4:0 a.m.3 views

DEBIAN-CVE-2004-0782

Integer overflow in pixbufcreatefromxpm io-xpm.c in the XPM image decoder for gtk+ 2.4.4 gtk2 and earlier, and gdk-pixbuf before 0.22, allows remote attackers to execute arbitrary code via certain ncol and cpp values that enable a heap-based buffer overflow. NOTE: this identifier is ONLY for gtk+...

7.5CVSS8.7AI score0.09184EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/10/15 12:0 a.m.37 views

Fedora Core 2 : libtiff-3.5.7-20.2 (2004-334)

The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. TIFF is a widely used file format for bitmapped images. During a source code audit, Chris Evans discovered a number of integer overflow bugs that affect libtiff. An attacker who...

7.5CVSS6.4AI score0.08268EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2004/10/04 3:56 p.m.6 views

openmotif21 stack overflows in libxpm

Multiple integer overflows in 1 the xpmParseColors function in parse.c, 2 XpmCreateImageFromXpmImage, 3 CreateXImage, 4 ParsePixels, and 5 ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file...

7.5CVSS6.2AI score0.0725EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2004/10/04 3:56 p.m.7 views

openmotif21 stack overflows in libxpm

Multiple stack-based buffer overflows in 1 xpmParseColors in parse.c, 2 ParseAndPutPixels in create.c, and 3 ParsePixels in parse.c for libXpm before 6.8.1 allow remote attackers to execute arbitrary code via a malformed XPM image file...

7.5CVSS7.8AI score0.08052EPSS
Exploits2References4
UbuntuCve
UbuntuCve
added 2004/09/28 4:0 a.m.31 views

CVE-2004-0691

Heap-based buffer overflow in the BMP image format parser for the QT library qt3 before 3.3.3 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code...

7.5CVSS6.4AI score0.14694EPSS
Exploits0References1
CERT
CERT
added 2004/08/04 12:0 a.m.64 views

libpng png_handle_sBIT() performs insufficient bounds checking

Overview The Portable Network Graphics library libpng contains a flaw that could introduce a remotely exploitable vulnerability. Description The Portable Network Graphics PNG image format is used as an alternative to other image formats such as the Graphics Interchange Format GIF. The libpng...

10CVSS6.5AI score0.82537EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2004/07/06 12:0 a.m.28 views

RHEL 2.1 : libpng (RHSA-2002:152)

Updated libpng packages are available that fix a buffer overflow vulnerability. The libpng package contains a library of functions for creating and manipulating PNG Portable Network Graphics image format files. PNG is a bit-mapped graphics format similar to the GIF format. Versions of libpng prio...

7.5CVSS5.8AI score0.02983EPSS
Exploits0References5
securityvulns
securityvulns
added 2003/02/04 12:0 a.m.18 views

Opera Images (GM#004-OP)

GreyMagic Security Advisory GM004-OP ===================================== By GreyMagic Software, Israel. 04 Feb 2003. Available in HTML format at http://security.greymagic.com/adv/gm004-op/. Topic: Opera Images. Discovery date: 29 Jan 2003. Affected applications: ====================== Opera 7...

6.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2003/01/29 3:31 p.m.42 views

Important: Red Hat Security Advisory: libpng security update

Updated libpng packages are available which fix a buffer overflow vulnerability. Updated 06 Feb 2003 Added fixed packages for Advanced Workstation 2.1 The libpng package contains a library of functions for creating and manipulating PNG Portable Network Graphics image format files. PNG is a...

7.5CVSS6.4AI score0.0614EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 1970/01/01 12:0 a.m.6 views

PT-2004-3705 · Debian +1 · Lesstif-Bin +6

Name of the Vulnerable Software and Affected Versions: lesstif-dev affected versions not specified lesstif-bin affected versions not specified lesstif1 affected versions not specified lesstif-dbg affected versions not specified lesstif-doc affected versions not specified libXpm versions prior to...

7.5CVSS8.1AI score0.08052EPSS
Exploits2References34
Rows per page
Query Builder