DEBIAN-CVE-2017-9219

The mp4ffreadstsc function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service memory allocation error and application crash via a crafted mp4 file...

CVE-2017-9219

The mp4ffreadstsc function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service memory allocation error and application crash via a crafted mp4 file...

CVE-2017-9219

The mp4ffreadstsc function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service memory allocation error and application crash via a crafted mp4 file...

CVE-2017-9220

The mp4ffreadstco function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service memory allocation error via a crafted mp4 file...

CVE-2017-9220

The mp4ffreadstco function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 FAAD2 2.7 allows remote attackers to cause a denial of service memory allocation error via a crafted mp4 file...

PT-2017-3888 · Audiocoding +1 · Faad2 +1

Name of the Vulnerable Software and Affected Versions: FAAD2 version 2.7 Description: The issue is related to the mp4ff read stco function in the common/mp4ff/mp4atom.c file of the FAAD2 audio decoder. It involves a buffer overflow in memory, which can be exploited by an attacker using a speciall...

CVE-2017-8834

The crtknzrparsecomment function in cr-tknzr.c in libcroco 0.6.12 allows remote attackers to cause a denial of service memory allocation error via a crafted CSS file...

CVE-2017-8834

The crtknzrparsecomment function in cr-tknzr.c in libcroco 0.6.12 allows remote attackers to cause a denial of service memory allocation error via a crafted CSS file...

Design/Logic Flaw

The crtknzrparsecomment function in cr-tknzr.c in libcroco 0.6.12 allows remote attackers to cause a denial of service memory allocation error via a crafted CSS file...

CVE-2017-8834

CVE-2017-8834 affects libcroco 0.6.12, via the cr_tknzr_parse_comment function in cr-tknzr.c, allowing remote denial of service (memory allocation error) through a crafted CSS file. Connected advisories (SUSE/SLE, openSUSE, RHEL, Ubuntu, Astra Linux) reference CVE-2017-8834 and related CVEs (e.g....

CVE-2017-8834

The crtknzrparsecomment function in cr-tknzr.c in libcroco 0.6.12 allows remote attackers to cause a denial of service memory allocation error via a crafted CSS file...

CVE-2017-8834

The crtknzrparsecomment function in cr-tknzr.c in libcroco 0.6.12 allows remote attackers to cause a denial of service memory allocation error via a crafted CSS file...

libcroco Denial of Service Vulnerability

libcroco is a CSS2 parsing library. A security vulnerability exists in the 'crtknzrparsecomment' function of the cr-tknzr.c file in libcroco version 0.6.12. A remote attacker can exploit this vulnerability to cause a denial of service memory allocation error with the help of a specially crafted C...

libcroco 0.6.12 - Denial of Service

libcroco 0.6.12 - Denial of Service libcroco multiple vulnerabilities ================ Author : qflb.wu =============== Introduction: ============= Libcroco is a standalone css2 parsing and manipulation library. The parser provides a low level event driven SAC like api and a css object model like...

libcroco 0.6.12 - Denial of Service

libcroco multiple vulnerabilities ================ Author : qflb.wu =============== Introduction: ============= Libcroco is a standalone css2 parsing and manipulation library. The parser provides a low level event driven SAC like api and a css object model like api. Libcroco provides a CSS2...

CVE-2017-8782

The readString function in util/read.c and util/old/read.c in libming 0.4.8 allows remote attackers to cause a denial of service via a large file that is mishandled by listswf, listaction, etc. This occurs because of an integer overflow that leads to a memory allocation error...

CVE-2017-8782

The readString function in util/read.c and util/old/read.c in libming 0.4.8 allows remote attackers to cause a denial of service via a large file that is mishandled by listswf, listaction, etc. This occurs because of an integer overflow that leads to a memory allocation error...

CVE-2017-8782

The readString function in util/read.c and util/old/read.c in libming 0.4.8 allows remote attackers to cause a denial of service via a large file that is mishandled by listswf, listaction, etc. This occurs because of an integer overflow that leads to a memory allocation error...

CVE-2017-8782

CVE-2017-8782 affects libming 0.4.8, where the readString function (util/read.c and util/old/read.c) can mishandle a large input due to an integer overflow, leading to memory allocation errors and remote denial of service (DoS) via SWF processing (listswf, listaction, etc.). Several connected adv...

openSUSE Security Update : libplist (openSUSE-2017-627)

This update for libplist fixes the following issues : - CVE-2017-5209: The base64decode function in libplist allowed attackers to obtain sensitive information from process memory or cause a denial of service buffer over-read via split encoded Apple Property List data bsc1019531. - CVE-2017-5545:...