160 matches found
Heap overflow
Heap-based buffer overflow in the progressive PNG Image loader decoders/pngloader.cpp in KHTML in KDE 4.0.x up to 4.0.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted image...
CVE-2008-1670
Removed by vendor...
Ubuntu 5.04 / 5.10 / 6.06 LTS : qt-x11-free vulnerability (USN-368-1)
An integer overflow was discovered in Qt's image loader. By processing a specially crafted image with an application that uses this library like Konqueror, a remote attacker could exploit this to execute arbitrary code with the application's privileges. Note that Tenable Network Security has...
Gimp image loader multiple input validation flaws
The 1 psp aka .tub, 2 bmp, 3 pcx, and 4 psd plugins in gimp allow user-assisted remote attackers to cause a denial of service crash or memory consumption via crafted image files, as discovered using the fusil fuzzing tool...
Mandrake Linux Security Advisory : gimp (MDKSA-2007:170)
Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in 1 DICOM, 2 PNM, 3 PSD, 4 PSP, 5 Sun RAS, 6 XBM, and 7 XWD files. CVE-2006-4519 Integer overflow in the seektoandunpackpixeldata...
CVE-2006-4519
Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in 1 DICOM, 2 PNM, 3 PSD, 4 PSP, 5 Sun RAS, 6 XBM, and 7 XWD files...
CVE-2006-4519
Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in 1 DICOM, 2 PNM, 3 PSD, 4 PSP, 5 Sun RAS, 6 XBM, and 7 XWD files...
CVE-2006-4519
Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in 1 DICOM, 2 PNM, 3 PSD, 4 PSP, 5 Sun RAS, 6 XBM, and 7 XWD files...
CVE-2006-4519
CVE-2006-4519 affects GIMP up to version 2.2.15 (pre-2.2.16); multiple integer overflows in the image loader plug-ins allow user-assisted remote attackers to execute arbitrary code via crafted length values in DICOM, PNM, PSD, PSP, Sun RAS, XBM, and XWD image files. Connected advisories reference...
CVE-2006-4519
Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in 1 DICOM, 2 PNM, 3 PSD, 4 PSP, 5 Sun RAS, 6 XBM, and 7 XWD files...
DEBIAN-CVE-2006-4806
Multiple integer overflows in imlib2 allow user-assisted remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 1 ARGB loaderargb.c, 2 PNG loaderpng.c, 3 LBM loaderlbm.c, 4 JPEG loaderjpeg.c, or 5 TIFF loadertiff.c images...
USN-368-1: Qt vulnerability
An integer overflow was discovered in Qt's image loader. By processing a specially crafted image with an application that uses this library like Konqueror, a remote attacker could exploit this to execute arbitrary code with the application's privileges...
Ubuntu 4.10 / 5.04 / 5.10 : gtk+2.0, gdk-pixbuf vulnerabilities (USN-216-1)
Two integer overflows have been discovered in the XPM image loader of the GDK pixbuf library. By tricking an user into opening a specially crafted XPM image with any Gnome desktop application that uses this library, this could be exploited to execute arbitrary code with the privileges of the user...
USN-216-1: GDK vulnerabilities
Two integer overflows have been discovered in the XPM image loader of the GDK pixbuf library. By tricking an user into opening a specially crafted XPM image with any Gnome desktop application that uses this library, this could be exploited to execute arbitrary code with the privileges of the user...
Slackware 10.0 / current : GTK+ image loading flaws (SSA:2004-266-02)
New GTK+ version 2 packages are available for Slackware 10.0 and -current to fix issues in the image loader routines that can crash applications. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security...
DEBIAN-CVE-2004-0802
Buffer overflow in the BMP loader in imlib2 before 1.1.2 allows remote attackers to execute arbitrary code via a specially-crafted BMP image, a different vulnerability than CVE-2004-0817...
GLSA-200408-20 : Qt: Image loader overflows
The remote host is affected by the vulnerability described in GLSA-200408-20 Qt: Image loader overflows There are several unspecified bugs in the QImage class which may cause crashes or allow execution of arbitrary code as the user running the Qt application. These bugs affect the PNG, XPM, BMP,...
FreeBSD : qt -- image loader vulnerabilities (ebffe27a-f48c-11d8-9837-000c41e2cdad)
Qt contains several vulnerabilities related to image loading, including possible crashes when loading corrupt GIF, BMP, or JPEG images. Most seriously, Chris Evans reports that the BMP crash is actually due to a heap buffer overflow. It is believed that an attacker may be able to construct a BMP...
Qt: Image loader overflows
Background Qt is a cross-platform GUI toolkit used by KDE. Description There are several unspecified bugs in the QImage class which may cause crashes or allow execution of arbitrary code as the user running the Qt application. These bugs affect the PNG, XPM, BMP, GIF and JPEG image types. Impact ...
xloadimage -- buffer overflow in FACES image handling
In 2001, zen-parse discovered a buffer overflow in xloadimage's FACES image loader. A maliciously crafted image could cause xloadimage to execute arbitrary code. A published exploit exists for this vulnerability. In 2005, Rob Holland discovered that the same vulnerability was present in xli...