Google PDFium JBIG2 image ComposeToOpt2WithRect information disclosure vulnerability

Summary An exploitable out-of-bounds read on the heap vulnerability exists in the JBIG2 parsing code of Google Chrome version 67.0.3396.99. A specially crafted PDF document can trigger an out-of-bounds read, which can possibly lead to an information leak that could be used as part of an exploit. ...

Denial of Service Vulnerability in Bandizip

Bandizip is a compressed package processing tool. A denial of service vulnerability exists in Bandizip. An attacker can exploit the vulnerability to process malformed zip archives malformed BMP images inside the archive which can cause the program to crash, and if successfully exploited can lead ...

wernsey/bitmap denial of service vulnerability

wernsey/bitmap is a library for manipulating bitmaps in memory and on disk. A denial of service vulnerability exists in versions of wernsey/bitmap prior to 2018-08-18, which can be exploited by an attacker to cause a denial of service null pointer backreference with the help of a 4-bit image...

Null pointer dereference

wernsey/bitmap before 2018-08-18 allows a NULL pointer dereference via a 4-bit image...

CVE-2018-17073

wernsey/bitmap before 2018-08-18 allows a NULL pointer dereference via a 4-bit image...

CVE-2018-17073

wernsey/bitmap before 2018-08-18 allows a NULL pointer dereference via a 4-bit image...

CVE-2018-17073

wernsey/bitmap before 2018-08-18 allows a NULL pointer dereference via a 4-bit image...

CVE-2018-17073

CVE-2018-17073 concerns wernsey/bitmap prior to 2018-08-18, where processing a 4-bit image can trigger a NULL pointer dereference (denial of service). The CNVD/NVD entries confirm a NULL pointer backreference vulnerability in the library used for in-memory and disk bitmap manipulation. Impact is ...

Socusoft Photo To Video Converter Handles BMP with Memory Corruption Vulnerability

Socusoft Photo To Video Converter is a free slideshow maker that converts a bunch of photos into one video file. Socusoft Photo To Video Converter handles BMP with a memory corruption vulnerability that can be exploited by attackers to cause the program to crash by constructing malformed BMP imag...

Microsoft Windows NtGdiClearBitmapAttributes Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processing a...

Out-of-bounds

An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.14. A denial of service out-of-bounds memory access and BUG can occur upon encountering an abnormal bitmap size when mounting a crafted f2fs image...

DEBIAN-CVE-2018-13096

An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.14. A denial of service out-of-bounds memory access and BUG can occur upon encountering an abnormal bitmap size when mounting a crafted f2fs image...

UBUNTU-CVE-2018-13096

An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.14. A denial of service out-of-bounds memory access and BUG can occur upon encountering an abnormal bitmap size when mounting a crafted f2fs image...

Linux kernel denial of service vulnerability (CNVD-2018-12666)

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A denial-of-service vulnerability exists in fs/f2fs/super.c in 4.17.3 and earlier versions of the Linux kernel. An...

CVE-2018-13096

An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.14. A denial of service out-of-bounds memory access and BUG can occur upon encountering an abnormal bitmap size when mounting a crafted f2fs image...

ImageMagick out-of-bounds write vulnerability (CNVD-2018-12317)

ImageMagick is a software for creating, editing, and compositing images that can read, convert, and write images in many formats. An out-of-bounds write vulnerability exists in ReadBMPImage and WriteBMPImage in coders/bmp.c in ImageMagick 7.0.8-3 Q16. An attacker can cause an out-of-bounds write ...

DEBIAN-CVE-2018-12599

In ImageMagick 7.0.8-3 Q16, ReadBMPImage and WriteBMPImage in coders/bmp.c allow attackers to cause an out of bounds write via a crafted file...

UBUNTU-CVE-2018-12600

In ImageMagick 7.0.8-3 Q16, ReadDIBImage and WriteDIBImage in coders/dib.c allow attackers to cause an out of bounds write via a crafted file...

UBUNTU-CVE-2018-12599

In ImageMagick 7.0.8-3 Q16, ReadBMPImage and WriteBMPImage in coders/bmp.c allow attackers to cause an out of bounds write via a crafted file...

libjpeg-turbo denial of service vulnerability (CNVD-2018-11844)

libjpeg is a C library that contains JPEG decoding and JPEG encoding functions. libjpeg-turbo is an optimized version of libjpeg. A security vulnerability exists in the 'allowsarray' function in the jmemmgr.c file in libjpeg-turbo version 1.5.90. An attacker can exploit this vulnerability to caus...