[SECURITY] Fedora 31 Update: golang-github-andybalholm-brotli-1.0.1-1.fc31

This package is a brotli compressor and decompressor implemented in Go. It was translated from the reference implementation https://github.com/google/bro tli with the c2go tool at https://github.com/andybalholm/c2go...

[SECURITY] Fedora 32 Update: golang-github-andybalholm-brotli-1.0.1-1.fc32

This package is a brotli compressor and decompressor implemented in Go. It was translated from the reference implementation https://github.com/google/bro tli with the c2go tool at https://github.com/andybalholm/c2go...

[SECURITY] Fedora 33 Update: golang-github-andybalholm-brotli-1.0.1-1.fc33

This package is a brotli compressor and decompressor implemented in Go. It was translated from the reference implementation https://github.com/google/bro tli with the c2go tool at https://github.com/andybalholm/c2go...

Fedora: Security Advisory for golang-github-andybalholm-brotli (FEDORA-2020-22d278923a)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

DEBIAN-CVE-2020-11765

An issue was discovered in OpenEXR before 2.4.1. There is an off-by-one error in use of the ImfXdr.h read function by DwaCompressor::Classifier::Classifier, leading to an out-of-bounds read...

DEBIAN-CVE-2020-11762

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read and write in DwaCompressor::uncompress in ImfDwaCompressor.cpp when handling the UNKNOWN compression case...

AZL-44829 CVE-2020-11765 affecting package OpenEXR 2.3.0-6

An issue was discovered in OpenEXR before 2.4.1. There is an off-by-one error in use of the ImfXdr.h read function by DwaCompressor::Classifier::Classifier, leading to an out-of-bounds read...

Pulverizr Injection Vulnerability

pulverizr is an image compressor. A security vulnerability exists in pulverizr 0.7.0 and earlier versions, which stems from a failure to perform any cleanup on the 'filename' parameter, which is directly used by the function. The vulnerability can be exploited to execute arbitrary commands...

Foxit PDF Compression Master DLL Hijacking Vulnerability

Foxit PDF Compression Master is a document compression software. Foxit PDF Compressor has a DLL hijacking vulnerability. An attacker can exploit this vulnerability to load a fake malicious dll file...

Swift Compressor Software suffers from dll hijacking vulnerability

Swift compression software is an efficient and intelligent picture compression, PDF compression, video compression software. Support batch compression, lossless compression, effectively solve the problem of oversized files. Swift Compressor has a dll hijacking vulnerability that can be exploited ...

UPX Floating Point Anomaly Vulnerability

UPX is a portable and extensible executable compression program. A security vulnerability exists in the 'PackLinuxElf::elfhash' function in the plxelf.cpp file in UPX version 3.95. An attacker can exploit this vulnerability to cause an application to crash, resulting in a denial of service...

UPX Heap Buffer Overflow Vulnerability

UPX is a portable and extensible executable compression program. A buffer overflow vulnerability exists in the 'canUnpack' function of the pmach.cpp file in UPX version 3.95. The vulnerability stems from a networked system or product performing operations in memory without properly validating dat...

envoy:compressor_fuzz_test: Index-out-of-bounds in compress_block

Project: https://github.com/envoyproxy/envoy.git Detailed Report: https://oss-fuzz.com/testcase?key=5149986500640768 Project: envoy Fuzzing Engine: libFuzzer Fuzz Target: compressorfuzztest Job Type: libfuzzerubsanenvoy Platform Id: linux Crash Type: Index-out-of-bounds Crash Address: Crash State...

CVE-2018-14444

libdxfrw 0.6.3 has an Integer Overflow in dwgCompressor::decompress18 in dwgutil.cpp, leading to an out-of-bounds read and application crash...

Unspecified vulnerability in jpeg-compressor

jpeg-compressor is an encoder for generating JPEG format files. A security vulnerability exists in the 'bmpload' function of the stbimage.c file in jpeg-compressor version 0.1. A remote attacker can exploit this vulnerability to cause a denial of service heap buffer overflow and application crash...

Unspecified vulnerability in jpeg-compressor

jpeg-compressor is an encoder for generating JPEG format files. A security vulnerability exists in the 'buildhuffman' function of the stbimage.c file in jpeg-compressor version 0.1. An attacker can exploit this vulnerability to cause a denial of service stack buffer overflow and application crash...

Heap overflow

An issue was discovered in jpeg-compressor 0.1. The bmpload function in stbimage.c allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact...

CVE-2018-13037

An issue was discovered in jpeg-compressor 0.1. The bmpload function in stbimage.c allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact...

CVE-2018-13037

An issue was discovered in jpeg-compressor 0.1. The bmpload function in stbimage.c allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact...

CVE-2018-13037

CVE-2018-13037 affects jpeg-compressor 0.1, where the bmp_load function in stb_image.c is vulnerable to a heap-based buffer overflow that can cause a denial of service and potentially other impacts. The issue is described as exploitable by remote attackers (per CVE records), with network attack v...