Poppler pdfunite Denial of Service Vulnerability

Poppler is a C++ class library for generating PDF, the library is inherited from Xpdf PDF reader. pdfunite is a Ruby wrapper. Poppler 0.17.3 after the version of pdfunite has a security vulnerability. An attacker can exploit this vulnerability with the help of specially crafted documentation to...

Linux kernel local denial of service vulnerability (CNVD-2017-08104)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A local denial of service vulnerability exists in the 'cryptoskcipherinittfm' function in the crypto/skcipher.c file in Linux kernel versions 4.11.2 and earlier. A local...

Cairo denial of service vulnerability

Cairo is a cross-platform open source vector graphics library developed by software developers Carl Worth and Behdad Esfahbod, which supports doing 2D drawings in multiple contexts and provides high-quality display and printouts. A denial of service vulnerability exists in Cairo version 1.15.4. A...

GNU Binutils Denial of Service Vulnerability (CNVD-2017-07207)

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU Project to work with target files in a variety of formats, with connectors, assemblers, and other tools for target files and archives. A denial-of-service vulnerability exis...

lrzip denial of service vulnerability

lrzip Long Range ZIP is an open source compression utility for large files. A denial of service vulnerability exists in the 'bufRead::get' function in the libzpaq/libzpaq.h file of liblrzip.so in lrzip version 0.631. A remote attacker can exploit this vulnerability to cause a denial of service nu...

Oracle illumos denial of service vulnerability (CNVD-2017-05419)

Oracle OpenSolaris is an open source operating system project of Oracle Corporation Oracle, mainly used to establish a community of developers focusing on the Solaris operating system. illumos is a community development and maintenance branch of OpenSolaris. A security vulnerability exists in...

Linux kernel ULL Null Pointer Reference Elevation of Privilege Vulnerability

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the U.S. KEYS is one of the subsystems that returns all keys that match a pattern. A security vulnerability exists in the KEYS subsystem in versions of Linux kernel prior to 3.18. A local attack...

Artifex Software MuJS Denial of Service Vulnerability (CNVD-2017-05277)

Artifex Software MuJS is a lightweight JavaScript interpreter from Artifex Software, USA, which is used to embed into other software to provide script execution capabilities. A denial of service vulnerability exists in the regexp.c file in Artifex Software MuJS. An attacker can exploit this...

PoDoFo Denial of Service Vulnerability (CNVD-2017-02738)

PoDoFo is an open source , written in C++ using the PDF file format library . PoDoFo 0.9.4 version of the PdfParser.cpp file in the 'PoDoFo::PdfParser::ReadXRefSubsection' function has a security vulnerability. A remote attacker can exploit the vulnerability to cause a denial of service null...

radare2 denial of service vulnerability

radare2 is a set of libraries and tools for working with binary files. A security vulnerability exists in the 'dexparsedebugitem' function in the libr/bin/p/bindex.c file in radare2 version 1.2.1. A remote attacker can exploit this vulnerability to cause a denial of service null pointer...

Samsung Exynos fimg2d driver for Android NULL pointer reference denial of service vulnerability

Samsung Exynos fimg2d driver for Android is a graphics device driver for Exynos chipset based on Android platform from Samsung, Korea. A security vulnerability exists in the Samsung Exynos fimg2d driver for Samsung phones using Android L 5.0/5.1 and M 6.0 versions. An attacker can exploit the...

Linux Kernel 'crypto/mcryptd.c' Denial of Service Vulnerability

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A security vulnerability exists in the crypto/mcryptd.c file in versions of Linux kernel prior to 4.8.15. A local attacker can exploit this vulnerability to cause a denial of...

GNOME Structured File Library Denial of Service Vulnerability

The GNOME Structured File Library libgsf is an I/O library for working with different structured file formats. A denial of service vulnerability exists in the 'tardirectoryforfile' function of the gsf-infile-tar.c file in the GNOME Structured File Library prior to version 1.14.41. An attacker can...

pcre: heap buffer over-read in pcre_compile2() (8.37/23)

The pcrecompile2 function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code and cause a denial of service out-of-bounds read via regular expression with a group containing both a forward referencing subroutine call and a recursive back reference, as demonstrated by...

GPU Display Driver Local Elevation of Privilege Vulnerability in Multiple NVIDIA Products

NVIDIA Quadro, NVS, and GeForce are all graphics card products from NVIDIA Corporation.NVIDIA Windows GPU Display Driver is one of the graphics processor GPU graphics card drivers dedicated to Windows. A security vulnerability exists in the NVIDIA Windows GPU Display Driver in NVIDIA Quadro, NVS...

JasPer Null Pointer Backreference Vulnerability

JasPer is a Canadian software developer Michael Adams developed an open source implementation of the JPEG-2000 codec. JasPer bmpdec.c:394:5 contains a null pointer back-reference vulnerability that can be exploited by an attacker to crash an application and deny service to a legitimate user...

potrace null pointer backreference vulnerability

potrace is a set of bitmap image processing tools developed by software developer Peter Selinger. The tool offers the ability to add smoothing effects, free scaling of images, and more. A null pointer back-reference vulnerability exists in potrace bitmapio.c:717:4. A remote attacker can exploit...

Linux kernel denial of service vulnerability (CNVD-2016-09460)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability exists in the 'rfcommsockbind' function in the net/bluetooth/rfcomm/sock.c file in versions of Linux kernel prior to 4.2. A local attacker ca...

Denial of Service Vulnerability in Multiple Apple Products (CNVD-2016-05664)

Apple iOS, OS X, tvOS, and watchOS are products of Apple Inc. Apple iOS is an operating system for mobile devices; OS X is a specialized operating system for Mac computers; tvOS is an operating system for smart TVs; and watchOS is an operating system for smart watches. kernel is one of the kernel...

MIT Kerberos Denial of Service Vulnerability (CNVD-2016-05682)

MIT Kerberos 5 also known as krb5 is the United States Massachusetts Institute of Technology MIT developed a set of network authentication protocols, which uses a client/server structure, and the client and server side can be authenticated to each other i.e., double authentication to prevent...