2531 matches found
CVE-2021-21456
SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...
CVE-2021-21455
SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...
CVE-2021-21461
SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated BMP file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...
Qualcomm Wlan Firmware Input Validation Error Vulnerability
Qualcomm Wlan Firmware is a Wlan support firmware from Qualcomm Incorporated. The Qualcomm Wlan Firmware suffers from an input validation error vulnerability that arises from time bitmap length and bit duration fields not being properly validated...
DEBIAN-CVE-2020-27772
A flaw was found in ImageMagick in coders/bmp.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned int. This would most likely lead to an impact to application availability, but could...
Binary vulnerability in KINCO DTools (CNVD-2020-68574)
Shanghai BUCO Automation Co., Ltd. has been focusing on the research, development, production, sales and related technical services of core components for industrial automation equipment control and industrial IoT/Internet software and hardware, as well as providing customers with solutions for...
freetype security update
2.9.1-4.el83.1 - Test bitmap size earlier for PNGs - Fix memory leak in pngshim.c - Resolves: 1891905...
freetype security update
2.8-14.el79.1 - Test bitmap size earlier for PNGs - Fix memory leak in pngshim.c - Resolves: 1891635...
Memory Corruption Vulnerability in Electronic Seal System of Unicom Intelligent Security Technology Co.
Ltd. was established in August 2007, the scope of business includes: technology development, technology consulting, technology services, technology transfer, technology training and so on. The electronic seal system of CommuniLink Wisdom Security Technology Co., Ltd. has a memory corruption...
freerdp: double free in update_read_cache_bitmap_v3_order function
In FreeRDP greater than 1.2 and before 2.0.0, a double free in updatereadcachebitmapv3order crashes the client application if corrupted data from a manipulated server is parsed. This has been patched in 2.0.0...
freerdp: out-of-bounds read in bitmap.c
libfreerdp/cache/bitmap.c in FreeRDP versions 1.0 through 2.0.0-rc4 has an Out of bounds read...
OSV-2020-2122 Heap-buffer-overflow in void parquet::internal::DefRepLevelsToListInfo<int>
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26829 Crash type: Heap-buffer-overflow WRITE 1 Crash state: void parquet::internal::DefRepLevelsToListInfo parquet::internal::DefRepLevelsToBitmap parquet::arrow::StructReader::BuildArray...
OPENSUSE-SU-2020:1744-1 Security update for freetype2
This update for freetype2 fixes the following issues: - CVE-2020-15999: fixed a heap buffer overflow found in the handling of embedded PNG bitmaps bsc1177914. This update was imported from the SUSE:SLE-15:Update update project...
FreeType: Arbitrary code execution
Background FreeType is a high-quality and portable font engine. Description A flaw in FreeType’s handling of embedded PNG bitmaps was discovered where the image height and width was not checked to be within bounds. Impact A remote attacker could entice a user to open a specially crafted font file...
SUSE-SU-2020:2995-1 Security update for freetype2
This update for freetype2 fixes the following issues: - CVE-2020-15999: fixed a heap buffer overflow found in the handling of embedded PNG bitmaps bsc1177914...
[slackware-security] freetype
New freetype packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/freetype-2.6.3-i586-3slack14.2.txz: Rebuilt. Fix heap buffer overflow in embedded PNG bitmap handling. For more...
freerdp: double free in update_read_cache_bitmap_v3_order function
In FreeRDP greater than 1.2 and before 2.0.0, a double free in updatereadcachebitmapv3order crashes the client application if corrupted data from a manipulated server is parsed. This has been patched in 2.0.0...
A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7. This flaw occurs while importing the Commercial IP Security Option (CIPSO) protocol's category bitmap into the SELinux extensible bitmap via the' ebitmap_netlbl_import' routine. While processing the CIPSO restricted bitmap tag in the 'cipso_v4_parsetag_rbm' routine it sets the security attribute to indicate that the category bitmap is present even if it has not been allocated. This issue leads to a NULL pointer dereference issue while importing the same category bitmap into SELinux. This flaw allows a remote network user to crash the system kernel resulting in a denial of service.
...
SAP 3D Visual Enterprise Viewer Input Validation Error Vulnerability (CNVD-2020-53165)
SAP 3D Visual Enterprise Viewer is a free 3D visualization viewer for Windows. An input validation error vulnerability exists in SAP 3D Visual Enterprise Viewer 9, which can be exploited by an attacker to cause an application crash via a specially crafted BMP file...
USN-4497-1 OpenJPEG vulnerabilities
It was discovered that OpenJPEG incorrectly handled certain image files. A remote attacker could possibly use this issue to cause a denial of service. CVE-2016-9112 It was discovered that OpenJPEG did not properly handle certain input. If OpenJPEG were supplied with specially crafted input, it...