5 matches found
CVE-2017-8400
In SWFTools 0.9.2, an out-of-bounds write of heap data can occur in the function pngload in lib/png.c:755. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS; it might cause arbitrary code execution...
Updated swftools package fixes security vulnerability
In SWFTools 0.9.2, an out-of-bounds write of heap data can occur in the function pngload in lib/png.c. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attackers could exploit this issue for DoS; it might cause arbitrary code execution CVE-2017-8400...
[SECURITY] [DLA 995-1] swftools security update
Package : swftools Version : 0.9.2+ds1-3+deb7u1 CVE ID : CVE-2017-8400 CVE-2017-8401 CVE-2017-8400 In SWFTools 0.9.2, an out-of-bounds write of heap data can occur in the function pngload in lib/png.c:755. This issue can be triggered by a malformed PNG file that is mishandled by png2swf. Attacker...
openSUSE Security Update : swftools (openSUSE-2017-564)
This update for swftools fixes the following issues : - CVE-2017-8400: out-of-bound write of heap data issue bsc1037050 - CVE-2017-8401: out-of-bound read of heap data issue bsc1037051 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
CVE-2017-8400
In SWFTools 0.9.2, an out-of-bounds write of heap data can occur in lib/png.c:755 within png_load(), triggered by a malformed PNG handled by png2swf. The issue could be exploited to cause DoS and, per the CVE description, may lead to arbitrary code execution. Public advisories (Mageia MGASA-2017-...