AZL-44322 CVE-2017-15371 affecting package sox for versions less than 14.4.2.0-33

There is a reachable assertion abort in the function soxappendcomment in formats.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...

AZL-43765 CVE-2017-15371 affecting package sox for versions less than 14.4.2.0-33

There is a reachable assertion abort in the function soxappendcomment in formats.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...

CVE-2017-15371

There is a reachable assertion abort in the function soxappendcomment in formats.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...

CVE-2017-15371

There is a reachable assertion abort in the function soxappendcomment in formats.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...

openvswitch: Invalid processing of a malicious OpenFlow role status message

While parsing an OpenFlow role status message Open vSwitch OvS, a call to the abort function for undefined role status reasons in the function 'ofpprintrolestatusmessage' in 'lib/ofp-print.c' could be misused for a remote denial of service attack by a malicious switch...

openvswitch: Invalid processing of a malicious OpenFlow role status message

While parsing an OpenFlow role status message Open vSwitch OvS, a call to the abort function for undefined role status reasons in the function 'ofpprintrolestatusmessage' in 'lib/ofp-print.c' could be misused for a remote denial of service attack by a malicious switch...

CVE-2017-13746

There is a reachable assertion abort in the function jpcdecprocesssiz in jpc/jpcdec.c:1297 in JasPer 2.0.12 that will lead to a remote denial of service attack...

CVE-2017-13747

There is a reachable assertion abort in the function jpcfloorlog2 in jpc/jpcmath.c in JasPer 2.0.12 that will lead to a remote denial of service attack...

CVE-2017-13745

There is a reachable assertion abort in the function jpcdecprocesssot in jpc/jpcdec.c in JasPer 2.0.12 that will lead to a remote denial of service attack by triggering an unexpected jpcppmstabtostreams return value, a different vulnerability than CVE-2018-9154...

CVE-2017-13750

There is a reachable assertion abort in the function jpcdecprocesssiz in jpc/jpcdec.c:1296 in JasPer 2.0.12 that will lead to a remote denial of service attack...

CVE-2017-13726

There is a reachable assertion abort in the function TIFFWriteDirectorySec in LibTIFF 4.0.8, related to tifdirwrite.c and a SubIFD tag. A crafted input will lead to a remote denial of service attack...

openvswitch: Invalid processing of a malicious OpenFlow role status message

While parsing an OpenFlow role status message Open vSwitch OvS, a call to the abort function for undefined role status reasons in the function 'ofpprintrolestatusmessage' in 'lib/ofp-print.c' could be misused for a remote denial of service attack by a malicious switch...

CVE-2017-13750

There is a reachable assertion abort in the function jpcdecprocesssiz in jpc/jpcdec.c:1296 in JasPer 2.0.12 that will lead to a remote denial of service attack...

CVE-2017-13751

There is a reachable assertion abort in the function calcstepsizes in jpc/jpcdec.c in JasPer 2.0.12 that will lead to a remote denial of service attack...

CVE-2017-13749

There is a reachable assertion abort in the function jpcpinextrpcl in jpc/jpct2cod.c in JasPer 2.0.12 that will lead to a remote denial of service attack...

CVE-2017-13749

There is a reachable assertion abort in the function jpcpinextrpcl in jpc/jpct2cod.c in JasPer 2.0.12 that will lead to a remote denial of service attack...

Authentication flaw

There is a reachable assertion abort in the function jpcdecprocesssiz in jpc/jpcdec.c:1297 in JasPer 2.0.12 that will lead to a remote denial of service attack...

Authentication flaw

There is a reachable assertion abort in the function jpcdecprocesssot in jpc/jpcdec.c in JasPer 2.0.12 that will lead to a remote denial of service attack by triggering an unexpected jpcppmstabtostreams return value, a different vulnerability than CVE-2018-9154...

CVE-2017-13752

There is a reachable assertion abort in the function jpcdequantize in jpc/jpcdec.c in JasPer 2.0.12 that will lead to a remote denial of service attack...

CVE-2017-13751

There is a reachable assertion abort in the function calcstepsizes in jpc/jpcdec.c in JasPer 2.0.12 that will lead to a remote denial of service attack...