MediaCoder Buffer Overflow Vulnerability (CNVD-2017-26355)

MediaCoder is a set of free general-purpose audio and video transcoding tools developed by China's Huang Yichun. A buffer overflow vulnerability exists in version 0.8.48.5888 of MediaCoder. A remote attacker can exploit this vulnerability to execute arbitrary code via .m3u files...

CVE-2017-8869

Buffer overflow in MediaCoder 0.8.48.5888 allows remote attackers to execute arbitrary code via a crafted .m3u file...

GraphicsMagick buffer overflow vulnerability (CNVD-2017-19979)

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A buffer overflow vulnerability exists in the 'WriteRGBImage' function in the coders/rgb.c file in GraphicsMagick version 1.3.26. An attacker can exploit thi...

GraphicsMagick Denial of Service Vulnerability (CNVD-2017-19977)

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A denial of service vulnerability exists in the 'WriteMAPImage' function in the coders/map.c file in GraphicsMagick version 1.3.26. An attacker can exploit...

ImageMagick 'WritePTIFImage()' Function Address Access Vulnerability

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A security vulnerability exists in the 'WritePTIFImage' function in the coders/tiff.c file in ImageMagick version...

DEBIAN-CVE-2017-11640

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to an address access exception in the WritePTIFImage function in coders/tiff.c...

ImageMagick 'WriteOnePNGImage' function null pointer reference vulnerability

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A security vulnerability exists in the 'WriteOnePNGImage' function in the coders/png.c file in ImageMagick versions...

UBUNTU-CVE-2017-11526

The ReadOneMNGImage function in coders/png.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted file...

UBUNTU-CVE-2017-11533

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteUILImage function in coders/uil.c...

UBUNTU-CVE-2017-11352

In ImageMagick before 7.0.5-10, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-9144...

DEBIAN-CVE-2017-10995

The mnggetlong function in coders/png.c in ImageMagick 7.0.6-0 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted MNG image...

GraphicsMagick 'coders/tiff.c' Buffer Overflow Vulnerability

GraphicsMagick has been called the Swiss Army Knife of image processing. The short and compact code provides a robust and efficient collection of tools and libraries to handle reading, writing and manipulating images, supporting over 88 image formats, including the important DPX, GIF, JPEG,...

Freeware Advanced Audio Coder 'faacEncOpen' Function Denial of Service Vulnerability

Freeware Advanced Audio Coder FAAC is a free advanced audio coder. A security vulnerability exists in the 'faacEncOpen' function in the libfaac/frame.c file in FAAC version 1.28. A remote attacker can exploit this vulnerability to cause a denial of service invalid memory read and application cras...

UBUNTU-CVE-2017-9130

The faacEncOpen function in libfaac/frame.c in Freeware Advanced Audio Coder FAAC 1.28 allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted wav file...

DEBIAN-CVE-2017-9129

The wavopenread function in frontend/input.c in Freeware Advanced Audio Coder FAAC 1.28 allows remote attackers to cause a denial of service large loop via a crafted wav file...

ImageMagick Denial of Service Vulnerability (CNVD-2017-08699)

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A denial of service vulnerability exists in the ReadJNGImage function of the coders/png.c file in ImageMagick version...

ImageMagick Denial of Service Vulnerability (CNVD-2017-08698)

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A denial of service vulnerability exists in the ReadJNGImage function of the coders/png.c file in ImageMagick version...

DEBIAN-CVE-2017-9262

In ImageMagick 7.0.5-6 Q16, the ReadJNGImage function in coders/png.c allows attackers to cause a denial of service memory leak via a crafted file...

UBUNTU-CVE-2017-9261

In ImageMagick 7.0.5-6 Q16, the ReadMNGImage function in coders/png.c allows attackers to cause a denial of service memory leak via a crafted file...

UBUNTU-CVE-2017-9142

In ImageMagick 7.0.5-7 Q16, a crafted file could trigger an assertion failure in the WriteBlob function in MagickCore/blob.c because of missing checks in the ReadOneJNGImage function in coders/png.c...