libtiff: use of uninitialized memory in LZW decoder

Multiple buffer underflows in the 1 LZWDecode, 2 LZWDecodeCompat, and 3 LZWDecodeVector functions in tiflzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, related to improper handling of the CODECLEAR code...

CVE-2005-2308

The JPEG decoder in Microsoft Internet Explorer allows remote attackers to cause a denial of service CPU consumption or crash and possibly execute arbitrary code via certain crafted JPEG images, as demonstrated using 1 movfencepost.jpg, 2 cmpfencepost.jpg, 3 oomdos.jpg, or 4 random.jpg...

USN-114-2: Fixed packages for USN-114-1

USN-114-1 fixed a vulnerability in the PCX decoder of kimgio. Unfortunately it was discovered that the original patches were faulty and caused regressions. This update now has the correct patches. This update also fixes the disappearing KDE settings which were caused by the accidential removal of...

Important: Red Hat Security Advisory: gdk-pixbuf security update

Updated gdk-pixbuf packages that fix several security flaws are now available. The gdk-pixbuf package contains an image loading library used with the GNOME GUI desktop environment. Updated 15th September 2004 Packages have been updated to correct a bug which caused the xpm loader to fail. During...

CVE-2003-0093

The RADIUS decoder in tcpdump 3.6.2 and earlier allows remote attackers to cause a denial of service crash via an invalid RADIUS packet with a header length field of 0, which causes tcpdump to generate data within an infinite loop...

MITKRB5-SA-2004-003: ASN.1 decoder denial-of-service

-----BEGIN PGP SIGNED MESSAGE----- MIT krb5 Security Advisory 2004-003 Original release: 2004-08-31 Topic: ASN.1 decoder denial of service Severity: serious SUMMARY ======= The ASN.1 decoder library in the MIT Kerberos 5 distribution is vulnerable to a denial-of-service attack causing an infinite...

RHEL 2.1 : glibc (RHSA-2002:167)

Updated glibc packages are available which fix a buffer overflow in the XDR decoder and two vulnerabilities in the resolver functions. updated 8 aug 2002 Updated packages have been made available, as the original errata introduced a bug which could cause calloc to crash on 32-bit platforms when...

Important: Red Hat Security Advisory: : : : Updated krb5 packages fix remote buffer overflow

Updated Kerberos 5 packages are now available for Red Hat Linux 6.2, 7, 7.1, 7.2, and 7.3. These updates fix a buffer overflow in the XDR decoder. Sun RPC is a remote procedure call framework which allows clients to invoke procedures in a server process over a network. XDR is a mechanism for...