LibRaw 'raw2image' function null pointer backreference vulnerability

LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A null pointer back-reference vulnerability exists in the 'raw2image' function of the librawcxx.cpp file in LibRaw version 0.19.1. An attacker can exploit this vulnerability to...

LibVNC Null Pointer Reverse Reference Vulnerability

LibVNC is a cross-platform C library for implementing VNC server and client functionality. A null pointer back-reference vulnerability exists in VNC client code in versions prior to LibVNC commit 4a21bbd097ef7c44bb000c3bd0907f96a10e4ce7. An attacker could exploit this vulnerability to cause a...

pcre: buffer overflow caused by recursive back reference by name within certain group (8.38/4)

PCRE before 8.38 mishandles the /?J?'d'?'d'\gd/ pattern and related patterns with certain recursive back references, which allows remote attackers to cause a denial of service buffer overflow or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScri...

pcre: buffer overflow caused by recursive back reference by name within certain group (8.38/4)

Heap-based buffer overflow in PCRE 8.34 through 8.37 and PCRE2 10.10 allows remote attackers to execute arbitrary code via a crafted regular expression, as demonstrated by /^?P=B?P=B?J:?Pc?Pa?P=BWGXCREDITS/, a different vulnerability than CVE-2015-8384...

JasPer null pointer back-reference vulnerability (CNVD-2016-10303)

JasPer is a Canadian software developer Michael Adams developed an open source implementation of the JPEG-2000 codec. A security vulnerability exists in JasPer bmpdec.c:398:5, which can be exploited by attackers to crash an application and deny service to legitimate users...

potrace null pointer back-reference vulnerability (CNVD-2016-10140)

potrace is a set of bitmap image processing tools developed by software developer Peter Selinger. The tool offers the ability to add smoothing effects, free scaling of images, and more. A null pointer back-reference vulnerability exists in potrace bitmapio.c:651:11. A remote attacker can exploit...

Libav Null Pointer Backward Reference Denial of Service Vulnerability

Libav is Libav team's set of cross-platform audio and video can be recorded, converted solution, which includes a libavcodec encoder. A null pointer back-reference exists in Libav, allowing an attacker to exploit the vulnerability to crash an application that references the library, resulting in ...

Libav 'ff_put_pixels8_xy2_mmx()' Denial of Service Vulnerability

Libav is Libav team's set of cross-platform audio and video can be recorded, converted solution, which includes a libavcodec encoder. Libav 'ffputpixels8xy2mmx' contains a null pointer back-reference that can be exploited to crash an application that references the library, resulting in a denial ...

PHP 'xsltprocessor.c' Denial of Service Vulnerability

PHP an open source general-purpose computer scripting language. PHP 'xsltprocessor.c' has a null pointer back-reference condition that allows remote attackers to exploit a vulnerability to submit a special request for a denial of service attack...

FreeBSD : pcre -- multiple vulnerabilities (4a88e3ed-00d3-11e5-a072-d050996490d0)

PCRE development team reports : A pattern such as '?20,1999?', which has a group containing a forward reference repeated a large but limited number of times within a repeated outer group that has a zero minimum quantifier, caused incorrect code to be compiled, leading to the error 'internal error...

IBM Rational ClearQuest 7.1.1.x < 7.1.1.4 / 7.1.2.x < 7.1.2.1 Multiple Vulnerabilities (credentialed check)

The remote host is running a version of IBM Rational ClearQuest 7.1.1.x prior to 7.1.1.4 / 7.1.2.x prior to 7.1.2.1 installed. It is, therefore, affected by the following vulnerabilities : - An information disclosure vulnerability exists in the Dojo Toolkit that allows a remote attacker to read...