2 matches found
CVE-2016-9825
libswscale/utils.c in libav 11.8 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
xpdf: uninitialized Gfx::parser pointer dereference
The Gfx::getPos function in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, CUPS, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service crash via unknown vectors that trigger an uninitialized pointer...