Lucene search
K

127 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:24 a.m.4 views

SUSE CVE-2014-9810

The dpx file handler in ImageMagick allows remote attackers to cause a denial of service segmentation fault and application crash via a malformed dpx file...

5.5CVSS6.7AI score0.01416EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/15 4:43 a.m.3 views

SUSE CVE-2017-10799

When GraphicsMagick 1.3.25 processes a DPX image with metadata indicating a large width in coders/dpx.c, a denial of service OOM can occur in ReadDPXImage...

3.7CVSS9.1AI score0.01265EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:43 a.m.2 views

SUSE CVE-2017-11188

The ReadDPXImage function in coders\dpx.c in ImageMagick 7.0.6-0 has a large loop vulnerability that can cause CPU exhaustion via a crafted DPX file, related to lack of an EOF check...

5.3CVSS9AI score0.01552EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 4:42 a.m.3 views

SUSE CVE-2017-11527

The ReadDPXImage function in coders/dpx.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service memory consumption via a crafted file...

5.3CVSS8.7AI score0.0177EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 4:11 a.m.3 views

SUSE CVE-2019-12975

ImageMagick 7.0.8-34 has a memory leak vulnerability in the WriteDPXImage function in coders/dpx.c...

3.3CVSS6.8AI score0.02255EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2020/09/21 12:0 a.m.29 views

openSUSE Security Update : libmediainfo / mediainfo (openSUSE-2020-1390)

This update for libmediainfo, mediainfo fixes the following issues : libmediainfo was updated to version 20.08 : Added : - MPEG-H 3D Audio full featured support group presets, switch groups, groups, signal groups - MP4/MOV: support of more metadata locations - JSON and XML outputs: authorize...

7.8CVSS6.8AI score0.01083EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2019/11/25 12:0 a.m.6 views

The vulnerability of the DPX module in the software suite for creating 3D computer graphics in Blender allows a hacker to execute arbitrary code.

The vulnerability of the DPX module in the software for creating 3D computer graphics in Blender is related to buffer overflow errors. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created CIN file...

7.8CVSS8.1AI score0.01866EPSS
Exploits1References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/11/18 12:0 a.m.7 views

The vulnerability of the MagickRealloc function in the memory.c file of the cross-platform graphics library GraphicsMagick, which allows a hacker to trigger a service failure.

The vulnerability of the MagickRealloc function in the cross-platform graphics library GraphicsMagick is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by using a specially created .dpx file...

7.8CVSS6.7AI score0.01265EPSS
Exploits0References5Affected Software2
NVD
NVD
added 2019/10/08 12:15 p.m.13 views

CVE-2019-17256

IrfanView 4.53 allows a User Mode Write AV starting at DPX!ReadDPXW+0x0000000000001203...

7.8CVSS7.6AI score0.0149EPSS
Exploits0References2
Prion
Prion
added 2019/10/08 12:15 p.m.12 views

Design/Logic Flaw

IrfanView 4.53 allows a User Mode Write AV starting at DPX!ReadDPXW+0x0000000000001203...

6.8CVSS7.6AI score0.0149EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/10/08 11:20 a.m.48 views

CVE-2019-17256

IrfanView 4.53 is affected by a user‑mode write access vulnerability starting at DPX!ReadDPX_W+0x… (CVE-2019-17256). The issue is described as a User Mode Write AV, with no public exploitation details provided in the supplied documents. Remediation is to update to the latest IrfanView version.

7.8CVSS7.5AI score0.0149EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/10/08 11:20 a.m.21 views

CVE-2019-17256

IrfanView 4.53 allows a User Mode Write AV starting at DPX!ReadDPXW+0x0000000000001203...

7.6AI score0.0149EPSS
Exploits0References2
Veracode
Veracode
added 2019/06/27 6:17 a.m.28 views

Memory Leak

ImageMagick is vulnerable to memory leak. The attacker can trigger a memory leak by inputing malicious DPX image to the WriteDPXImage function in coders/dpx.c...

5.5CVSS6.9AI score0.02255EPSS
Exploits0References5Affected Software4
CNVD
CNVD
added 2019/06/27 12:0 a.m.3 views

ImageMagick Resource Management Error Vulnerability (CNVD-2019-29432)

ImageMagick is the United States ImageMagick Studio, Inc. of a set of open source image processing software. A memory leak vulnerability exists in the 'WriteDPXImage' function in the coders/dpx.c file in ImageMagick version 7.0.8-34. An attacker could exploit this vulnerability to cause a denial ...

5.5CVSS6.6AI score0.02255EPSS
Exploits0References1
OSV
OSV
added 2019/06/26 6:15 p.m.0 views

DEBIAN-CVE-2019-12975

ImageMagick 7.0.8-34 has a memory leak vulnerability in the WriteDPXImage function in coders/dpx.c...

5.5CVSS7AI score0.02255EPSS
Exploits0References1
OSV
OSV
added 2019/06/26 6:15 p.m.7 views

UBUNTU-CVE-2019-12975

ImageMagick 7.0.8-34 has a memory leak vulnerability in the WriteDPXImage function in coders/dpx.c...

5.5CVSS6.7AI score0.02255EPSS
Exploits0References4
ossfuzz
ossfuzz
added 2018/04/27 8:22 a.m.16 views

graphicsmagick/coder_DPX_fuzzer: Use-of-uninitialized-value in WriteDPXImage

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5665839926738944 Project: graphicsmagick Fuzzer: libFuzzergraphicsmagickcoderDPXfuzzer Fuzz target binary: coderDPXfuzzer Job Type: libfuzzermsangraphicsmagick Platform Id: linux Crash Type:...

6.8AI score
Exploits0Affected Software1
NVD
NVD
added 2018/04/24 7:29 p.m.17 views

CVE-2017-2903

An exploitable integer overflow exists in the DPX loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.cin' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...

8.8CVSS8.1AI score0.01995EPSS
Exploits1References3
OSV
OSV
added 2018/04/24 7:29 p.m.3 views

DEBIAN-CVE-2017-2903

An exploitable integer overflow exists in the DPX loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.cin' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...

7.8CVSS8AI score0.01995EPSS
Exploits1References1
OSV
OSV
added 2018/04/24 7:29 p.m.15 views

CVE-2017-2902

An exploitable integer overflow exists in the DPX loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.cin' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...

7.8CVSS8.2AI score
Exploits0References3
Rows per page
Query Builder