Lucene search
K

148 matches found

Tenable Nessus
Tenable Nessus
added 2020/12/28 12:0 a.m.43 views

SUSE SLED15 / SLES15 Security Update : openexr (SUSE-SU-2020:3934-1)

This update for openexr fixes the following issues : Security issues fixed : CVE-2020-16587: Fixed a heap-based buffer overflow in chunkOffsetReconstruction in ImfMultiPartInputFile.cpp bsc1179879. CVE-2020-16588: Fixed a NULL pointer deference in generatePreview bsc1179879. CVE-2020-16589: Fixed...

5.5CVSS7AI score0.01239EPSS
Exploits3References8
OPENSUSE Linux
OPENSUSE Linux
added 2020/12/28 12:0 a.m.31 views

Security update for openexr (moderate)

openSUSE Security Update: Security update for openexr Announcement ID: openSUSE-SU-2020:2351-1 Rating: moderate References: 1179879 Cross-References: CVE-2020-16587 CVE-2020-16588 CVE-2020-16589 Affected Products: openSUSE Leap 15.2 An update that fixes three vulnerabilities is now available...

5.5CVSS6.6AI score0.01239EPSS
Exploits3References1
OPENSUSE Linux
OPENSUSE Linux
added 2020/12/27 12:0 a.m.31 views

Security update for openexr (moderate)

openSUSE Security Update: Security update for openexr Announcement ID: openSUSE-SU-2020:2349-1 Rating: moderate References: 1179879 Cross-References: CVE-2020-16587 CVE-2020-16588 CVE-2020-16589 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities is now available...

5.5CVSS6.6AI score0.01239EPSS
Exploits3References1
OSV
OSV
added 2020/12/24 11:37 a.m.4 views

SUSE-SU-2020:3934-1 Security update for openexr

This update for openexr fixes the following issues: Security issues fixed: - CVE-2020-16587: Fixed a heap-based buffer overflow in chunkOffsetReconstruction in ImfMultiPartInputFile.cpp bsc1179879. - CVE-2020-16588: Fixed a null pointer deference in generatePreview bsc1179879. - CVE-2020-16589:...

5.5CVSS6AI score0.01239EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2020/12/24 12:0 a.m.42 views

SUSE SLES12 Security Update : openexr (SUSE-SU-2020:3931-1)

This update for openexr fixes the following issues : Security issues fixed : CVE-2020-16587: Fixed a heap-based buffer overflow in chunkOffsetReconstruction in ImfMultiPartInputFile.cpp bsc1179879. CVE-2020-16588: Fixed a NULL pointer deference in generatePreview bsc1179879. CVE-2020-16589: Fixed...

5.5CVSS7AI score0.01239EPSS
Exploits3References8
OSV
OSV
added 2020/12/23 5:21 p.m.6 views

SUSE-SU-2020:3931-1 Security update for openexr

This update for openexr fixes the following issues: Security issues fixed: - CVE-2020-16587: Fixed a heap-based buffer overflow in chunkOffsetReconstruction in ImfMultiPartInputFile.cpp bsc1179879. - CVE-2020-16588: Fixed a null pointer deference in generatePreview bsc1179879. - CVE-2020-16589:...

5.5CVSS6AI score0.01239EPSS
Exploits3References5
Veracode
Veracode
added 2020/12/14 7:34 a.m.31 views

Denial Of Service (DoS)

openexr is vulnerable to denial of service. The vulnerability exists through a Null Pointer Deference in generatePreview in makePreview.cpp which allows an attacker to crash the application via malicious input...

5.5CVSS5.3AI score0.01204EPSS
Exploits1References4Affected Software1
OpenVAS
OpenVAS
added 2020/12/14 12:0 a.m.28 views

Debian: Security Advisory (DLA-2491-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.01204EPSS
Exploits2References3
OSV
OSV
added 2020/12/09 9:15 p.m.2 views

UBUNTU-CVE-2020-16588

A Null Pointer Deference issue exists in Academy Software Foundation OpenEXR 2.3.0 in generatePreview in makePreview.cpp that can cause a denial of service via a crafted EXR file...

5.5CVSS7.3AI score0.01204EPSS
Exploits1References3
CVE
CVE
added 2020/12/09 12:0 a.m.174 views

CVE-2020-16588

The CVE-2020-16588 entry concerns a Null Pointer Deference in OpenEXR 2.3.0 (generatePreview in makePreview.cpp) that can lead to denial of service via a crafted EXR file. Connected sources show multiple distributions releasing fixes (e.g., Debian openexr updates addressing CVE-2020-16588; openSU...

5.5CVSS5.3AI score0.01204EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVE
added 2020/12/09 12:0 a.m.28 views

CVE-2020-16588

A Null Pointer Deference issue exists in Academy Software Foundation OpenEXR 2.3.0 in generatePreview in makePreview.cpp that can cause a denial of service via a crafted EXR file...

5.5CVSS6.6AI score0.01204EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/04/27 12:0 a.m.24 views

Debian DLA-2183-1 : libgsf security update

It was discovered that there was a NULL pointer deference exploit in libgsf, a I/O abstraction library for GNOME. An error within the 'tardirectoryforfile' function could be exploited to trigger a NULL pointer dereference and subsequently cause a crash via a crafted TAR file. For Debian 8 'Jessie...

5.5CVSS5.4AI score0.0133EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2020/04/26 12:0 a.m.47 views

Debian: Security Advisory (DLA-2183-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.5AI score0.0133EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/04/02 12:0 a.m.270 views

EulerOS Virtualization for ARM 64 3.0.6.0 : httpd (EulerOS-SA-2020-1359)

According to the versions of the httpd packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - In Apache HTTP Server 2.4 release 2.4.37 and prior, modsession checks the session expiry time before decoding the...

9.1CVSS6.8AI score0.52873EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2020/03/27 8:15 p.m.19 views

CVE-2020-6095

An exploitable denial of service vulnerability exists in the GstRTSPAuth functionality of GStreamer/gst-rtsp-server 1.14.5. A specially crafted RTSP setup request can cause a null pointer deference resulting in denial-of-service. An attacker can send a malicious packet to trigger this vulnerabili...

7.5CVSS7.1AI score0.02872EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2020/03/27 7:20 p.m.23 views

CVE-2020-6095

An exploitable denial of service vulnerability exists in the GstRTSPAuth functionality of GStreamer/gst-rtsp-server 1.14.5. A specially crafted RTSP setup request can cause a null pointer deference resulting in denial-of-service. An attacker can send a malicious packet to trigger this vulnerabili...

7.5CVSS7.2AI score0.02872EPSS
Exploits1
Cvelist
Cvelist
added 2020/03/27 7:20 p.m.38 views

CVE-2020-6095

An exploitable denial of service vulnerability exists in the GstRTSPAuth functionality of GStreamer/gst-rtsp-server 1.14.5. A specially crafted RTSP setup request can cause a null pointer deference resulting in denial-of-service. An attacker can send a malicious packet to trigger this vulnerabili...

7.5CVSS7.2AI score0.02872EPSS
Exploits1References4
Talos Blog
Talos Blog
added 2020/03/23 8:0 a.m.26 views

Vulnerability Spotlight: Denial-of-service vulnerability in GStreamer

Peter Wang of Cisco ASIG discovered this vulnerability. Blog by Jon Munshaw. Cisco Talos recently discovered a denial-of-service vulnerability in GStreamer, a pipeline-based multimedia framework. GStreamer contains gst-rtsp-server, an open-source library that allows the user to build RTSP servers...

1.9AI score
Exploits0
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.42 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2017-1071)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.01566EPSS
Exploits8References2
0day.today
0day.today
added 2019/12/23 12:0 a.m.140 views

Microsoft Windows 10 BasicRender.sys - Denial of Service Exploit

Exploit Title: Microsoft Windows 10 BasicRender.sys - Denial of Service PoC Exploit author: vportal Vendor homepage: http://www.microsoft.com Version: Windows 10 1803 x86 Tested on: Windows 10 1803 x86 CVE: N/A A Null pointer deference exists in the WARPGPUCMDSYNC function of the BasicRender.sys...

7.4AI score
Exploits0
Rows per page
Query Builder