GraphicsMagick magick/render.c File Denial of Service Vulnerability

GraphicsMagick is a simple set of image processing tools. A denial-of-service vulnerability exists in GraphicsMagick's handling of special svg files, which can be exploited by remote attackers to construct malicious files and trick applications into parsing them, which can crash the application...

Mozilla: Buffer overflow parsing HTML5 fragments (MFSA 2016-50)

Heap-based buffer overflow in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allows remote attackers to execute arbitrary code via foreign-context HTML5 fragments, as demonstrated by fragments within an SVG element...

UBUNTU-CVE-2016-2819

Heap-based buffer overflow in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allows remote attackers to execute arbitrary code via foreign-context HTML5 fragments, as demonstrated by fragments within an SVG element...

Unspecified vulnerability in ntpd (CNVD-2016-03821)

ntpd Network Time Protocol daemon is an operating system daemon that uses the Network Time Protocol NTP to keep synchronized with the system time of a time server. An unspecified vulnerability exists in versions of ntpd prior to 4.2.8p8. An attacker can exploit this vulnerability to affect siblin...

Apple iTunes Arbitrary Code Execution Vulnerability

Apple iTunes is a suite of media player applications from the American company Apple. A security vulnerability exists in Apple iTunes versions prior to 12.4, which can be exploited by an attacker to execute arbitrary code...

DEBIAN-CVE-2016-4348

The rsvgcssnormalizefontsize function in librsvg 2.40.2 allows context-dependent attackers to cause a denial of service stack consumption and application crash via circular definitions in an SVG document...

DEBIAN-CVE-2015-7557

The rsvgnodepolybuildpath function in rsvg-shapes.c in librsvg before 2.40.7 allows context-dependent attackers to cause a denial of service out-of-bounds heap read via an odd number of elements in a coordinate pair in an SVG document...

UBUNTU-CVE-2015-7558

librsvg before 2.40.12 allows context-dependent attackers to cause a denial of service infinite loop, stack consumption, and application crash via cyclic references in an SVG document...

UBUNTU-CVE-2016-4348

The rsvgcssnormalizefontsize function in librsvg 2.40.2 allows context-dependent attackers to cause a denial of service stack consumption and application crash via circular definitions in an SVG document...

UBUNTU-CVE-2015-7557

The rsvgnodepolybuildpath function in rsvg-shapes.c in librsvg before 2.40.7 allows context-dependent attackers to cause a denial of service out-of-bounds heap read via an odd number of elements in a coordinate pair in an SVG document...

(Pwn2Own) Apple OS X IntelAccelerator Out-Of-Bounds Indexing Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Apple OS X. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the...

librsvg2 Out-of-Bounds Heap Read Vulnerability

librsvg2 is an SVG rendering engine written in C. It can be used to render a number of SVG files. A security vulnerability exists in librsvg2. An attacker can exploit this vulnerability to cause an out-of-bounds heap read with an SVG file...

CVE-2016-1660

Blink, as used in Google Chrome before 50.0.2661.94, mishandles assertions in the WTF::BitArray and WTF::doubleconversion::Vector classes, which allows remote attackers to cause a denial of service out-of-bounds write or possibly have unspecified other impact via a crafted web site...

CVE-2016-1098

Technical details for CVE-2016-1098 are not publicly available in the provided documents. Monitor for updates; based on current sources, specifics on affected components, impact, or fixes are not disclosed here.

Oracle: Security Advisory (ELSA-2016-0695)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

File Hub Input Validation Vulnerability

File Hub provides easy access to files on iOS Devices, Cloud Services and remote computers. An input validation vulnerability exists in File Hub. An attacker can inject malicious persistent code into the mobile application...

emblog file upload vulnerability

emlog is the short form of "Every Memory Log", meaning: a little bit of memory. It is a PHP language and MySQL database based on open source, free, powerful personal or multi-person co-authored blog system blog. PHP and MySQL-based powerful blog and CMS site-building system . A security...

UBUNTU-CVE-2016-1660

Blink, as used in Google Chrome before 50.0.2661.94, mishandles assertions in the WTF::BitArray and WTF::doubleconversion::Vector classes, which allows remote attackers to cause a denial of service out-of-bounds write or possibly have unspecified other impact via a crafted web site...

Design/Logic Flaw

The 1 piperead and 2 pipewrite implementations in fs/pipe.c in a certain Linux kernel backport in the linux package before 3.2.73-2+deb7u3 on Debian wheezy and the kernel package before 3.10.0-229.26.2 on Red Hat Enterprise Linux RHEL 7.1 do not properly consider the side effects of failed...

UBUNTU-CVE-2016-0774

The 1 piperead and 2 pipewrite implementations in fs/pipe.c in a certain Linux kernel backport in the linux package before 3.2.73-2+deb7u3 on Debian wheezy and the kernel package before 3.10.0-229.26.2 on Red Hat Enterprise Linux RHEL 7.1 do not properly consider the side effects of failed...