22 matches found
EUVD-2017-8663
Malware in sbrugna...
cmyk-printing.co.uk Cross Site Scripting vulnerability OBB-4041968
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
SUSE CVE-2017-11643
GraphicsMagick 1.3.26 has a heap overflow in the WriteCMYKImage function in coders/cmyk.c when processing multiple frames that have non-identical widths...
SUSE CVE-2017-17502
ReadCMYKImage in coders/cmyk.c in GraphicsMagick 1.3.26 has a magick/import.c ImportCMYKQuantumType heap-based buffer over-read via a crafted file...
DEBIAN-CVE-2017-17502
ReadCMYKImage in coders/cmyk.c in GraphicsMagick 1.3.26 has a magick/import.c ImportCMYKQuantumType heap-based buffer over-read via a crafted file...
Oracle OIT IX SDK TIFF file parsing heap buffer overflow(CVE-2016-3582)
Description While parsing a specially crafted TIFF file, a parser confusion can lead to a heap buffer overflow resulting in out of bounds memory overwrite and possibly leading to arbitrary code execution. Tested Versions Outside In IX sdk 8.5.1. Product URLs...
DEBIAN-CVE-2017-11643
GraphicsMagick 1.3.26 has a heap overflow in the WriteCMYKImage function in coders/cmyk.c when processing multiple frames that have non-identical widths...
Denial Of Service (DoS) Through Heap Out-of-bounds Read
ImageMagick is vulnerable to denial of service DoS attacks. The vulnerability exists in coders/tiff.c where it is possible to read beyond an allocated heap buffer when reading CMYK TIFF Images due to insufficient checks...
Debian DSA-3808-1 : imagemagick - security update
This update fixes several vulnerabilities in imagemagick: Various memory handling problems and cases of missing or incomplete input sanitising may result in denial of service or the execution of arbitrary code if malformed TGA, Sun or PSD files are processed. This update also fixes visual artefac...
[SECURITY] [DSA 3808-1] imagemagick security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3808-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 13, 2017 https://www.debian.org/security/faq -...
DEBIAN-CVE-2016-4796
Heap-based buffer overflow in the colorcmyktorgb in common/color.c in OpenJPEG before 2.1.1 allows remote attackers to cause a denial of service crash via a crafted .j2k file...
OpenJPEG heap buffer overflow vulnerability (CNVD-2016-03345)
OpenJPEG is a C-based open source JPEG 2000 codec . A heap buffer overflow vulnerability exists in the 'colorcmyktorgb' function in OpenJPEG's color.c file. An attacker could exploit this vulnerability to cause a denial of service...
Adobe Acrobat and Reader Memory Corruption (APSB16-02: CVE-2016-0936)
A memory corruption vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader decodes CMYK files where a JPEG image has invalid values for the three component chrominance subsampling. A remote attacker can exploit this vulnerability...
[SECURITY] Fedora 10 Update: argyllcms-1.0.3-5.fc10
The Argyll color management system supports accurate ICC profile creation f or scanners, CMYK printers, film recorders and calibration and profiling of displays. Spectral sample data is supported, allowing a selection of illuminants obse rver types, and paper fluorescent whitener additive...
Fedora Core 9 FEDORA-2009-3430 (argyllcms)
The remote host is missing an update to argyllcms announced via advisory FEDORA-2009-3430. OpenVAS Vulnerability Test $Id: fcore20093430.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-3430 argyllcms Authors: Thomas Reinke Copyright: Copyright c 200...
[SECURITY] Fedora 9 Update: argyllcms-1.0.3-4.fc9
The Argyll color management system supports accurate ICC profile creation f or scanners, CMYK printers, film recorders and calibration and profiling of displays. Spectral sample data is supported, allowing a selection of illuminants obse rver types, and paper fluorescent whitener additive...
[SECURITY] Fedora 10 Update: argyllcms-1.0.3-3.fc10
The Argyll color management system supports accurate ICC profile creation f or scanners, CMYK printers, film recorders and calibration and profiling of displays. Spectral sample data is supported, allowing a selection of illuminants obse rver types, and paper fluorescent whitener additive...
[SECURITY] [DSA 1038-1] New xzgv packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 1038-1 [email protected] http://www.debian.org/security/ Martin Schulze April 22nd, 2006 http://www.debian.org/security/faq -...
zgv, xzgv: Heap overflow
Background xzgv and zgv are picture viewing utilities with a thumbnail based file selector. Description Andrea Barisani of Gentoo Linux discovered xzgv and zgv allocate insufficient memory when rendering images with more than 3 output components, such as images using the YCCK or CMYK colour space...
Heap overflow
Heap-based buffer overflow in zgv before 5.8 and xzgv before 0.8 might allow user-assisted attackers to execute arbitrary code via a JPEG image with more than 3 output components, such as a CMYK or YCCK color space, which causes less memory to be allocated than required...