Linux kernel KEYS subsystem denial of service vulnerability (CNVD-2017-32223)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the U.S. KEYS is one of the subsystems that returns all keys that match a pattern. A security vulnerability exists in the KEYS subsystem in Linux kernel 4.13.7 and earlier. A local attacker can...

GNU Libextractor Denial of Service Vulnerability (CNVD-2017-30423)

GNU Libextractor is a set of libraries developed by the GNU Project for extracting metadata from files. A denial of service vulnerability exists in the 'flacmetadata' function of the flacextractor.c file in GNU Libextractor version 1.4. An attacker can exploit this vulnerability to cause a denial...

Google Android Qualcomm Camera Driver Denial of Service Vulnerability

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. A denial of service vulnerability exists in the Google Android Qualcomm camera driver, which can be exploited by an attacker to cause a denial of service null pointer...

ImageMagick 'PDFDelegateMessage' function null pointer dereference vulnerability

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A security vulnerability exists in the 'PDFDelegateMessage' function in the coders/pdf.c file in ImageMagick version...

ImageMagick 'AcquireResampleFilterThreadSet' Function Denial of Service Vulnerability

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A security vulnerability exists in the 'AcquireResampleFilterThreadSet' function in the magick/resample-private.h file...

ImageMagick 'PostscriptDelegateMessage' Function Denial of Service Vulnerability

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A security vulnerability exists in the 'PostscriptDelegateMessage' function in the coders/ps.c file in ImageMagick...

MP3Gain mpglibDBL Denial of Service Vulnerability

MP3Gain is a MP3 file volume adjustment application. mpglibDBL is one of the MPEG file decoders. A security vulnerability exists in the syncbuffer of the interface.c file of mpglibDBL in MP3Gain. A remote attacker can exploit this vulnerability to cause a denial of service null pointer...

GraphicsMagick coders/pnm.c file denial of service vulnerability

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A security vulnerability exists in ReadPNMImage in the coders/pnm.c file in GraphicsMagick version 1.3.26. An attacker can exploit this vulnerability to caus...

ImageMagick Denial of Service Vulnerability (CNVD-2017-27286)

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A denial of service vulnerability exists in the DrawGetStrokeDashArray function of the wand/drawing-wand.c file in...

Netwide Assembler (NASM) Integer Overflow Vulnerability

Netwide Assembler NASM is a Linux-based assembler that creates binaries and writes bootloaders. An integer overflow vulnerability exists in the preproc.c file in NASM version 2.14rc0. A remote attacker could exploit this vulnerability to cause a denial of service null pointer backreference...

FFmpeg 'av_color_primaries_name' function denial of service vulnerability

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in the 'avcolorprimariesname' function in the libavutil/pixdesc.c file in FFmpeg version 3.3.3. An attacker can exploit this vulnerability to cause a denial ...

ImageMagick Denial of Service Vulnerability (CNVD-2017-24321)

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A denial of service vulnerability exists in the 'IdentifyImage' function of the MagickCore/identify.c file in...

LAME 'id3v2AddAudioDuration' function null pointer reference denial of service vulnerability

LAME is LAME team developed a set of open source MP3 audio compression software . A security vulnerability exists in the 'id3v2AddAudioDuration' function in the libmp3lame/id3tag.c file in LAME version 3.99.5. An attacker can exploit this vulnerability to cause a denial of service null pointer...

Linux kernel denial of service vulnerability (CNVD-2017-24356)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability exists in the net/ipv4/route.c file in Linux kernel versions 4.13-rc1 through 4.13-rc6. A local attacker can exploit this vulnerability to...

Google Android Qualcomm component null pointer reference vulnerability (CNVD-2017-26849)

Android is a Linux-based open-source operating system developed by Google and the Open Handheld Alliance OHA, and Qualcomm closed-source components are among the closed-source components developed by Qualcomm. A security vulnerability exists in the Qualcomm closed-source component in Android. An...

Google Android Qualcomm Component Denial of Service Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA in the U.S. Qualcomm is one of the Qualcomm components used in Qualcomm devices. A security vulnerability exists in the Qualcomm component of Android. A remote attacker could explo...

Google Android Qualcomm component null pointer reference vulnerability (CNVD-2017-26839)

Android is a Linux-based open-source operating system developed by Google and the Open Handheld Alliance OHA, and Qualcomm closed-source components are among the closed-source components developed by Qualcomm. A security vulnerability exists in the Qualcomm closed-source component in Android. An...

Xiph.Org libvorbis 'orbis_block_clear' function denial of service vulnerability

Xiph.Org libvorbis is an open source audio music encoding and decoding function library . A security vulnerability exists in the 'orbisblockclear' function in the lib/block.c file in Xiph.Org libvorbis version 1.3.5. A remote attacker can exploit this vulnerability to cause a denial of service nu...

NVIDIA Windows GPU Display Driver elevation of privilege vulnerability (CNVD-2017-26301)

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers from NVIDIA dedicated to Windows. kernel mode layer handler is one of the kernel mode layer handlers. A security vulnerability exists in the kernel mode layer handler in the NVIDIA Windows GPU Display Drive...

libming 'stackswap' function denial of service vulnerability

libming is a Flash SWF output library for PHP, Perl, Ruby, Python, C, C ++, Java, and more. A security vulnerability exists in the stackswap function called from decompileSTACKSWAP in util/decompile.c in Libming, which can be exploited by an attacker with the help of specially crafted files to...