127 matches found
SUSE CVE-2014-9810
The dpx file handler in ImageMagick allows remote attackers to cause a denial of service segmentation fault and application crash via a malformed dpx file...
SUSE CVE-2017-10799
When GraphicsMagick 1.3.25 processes a DPX image with metadata indicating a large width in coders/dpx.c, a denial of service OOM can occur in ReadDPXImage...
SUSE CVE-2017-11188
The ReadDPXImage function in coders\dpx.c in ImageMagick 7.0.6-0 has a large loop vulnerability that can cause CPU exhaustion via a crafted DPX file, related to lack of an EOF check...
SUSE CVE-2017-11527
The ReadDPXImage function in coders/dpx.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service memory consumption via a crafted file...
SUSE CVE-2019-12975
ImageMagick 7.0.8-34 has a memory leak vulnerability in the WriteDPXImage function in coders/dpx.c...
openSUSE Security Update : libmediainfo / mediainfo (openSUSE-2020-1390)
This update for libmediainfo, mediainfo fixes the following issues : libmediainfo was updated to version 20.08 : Added : - MPEG-H 3D Audio full featured support group presets, switch groups, groups, signal groups - MP4/MOV: support of more metadata locations - JSON and XML outputs: authorize...
The vulnerability of the DPX module in the software suite for creating 3D computer graphics in Blender allows a hacker to execute arbitrary code.
The vulnerability of the DPX module in the software for creating 3D computer graphics in Blender is related to buffer overflow errors. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created CIN file...
The vulnerability of the MagickRealloc function in the memory.c file of the cross-platform graphics library GraphicsMagick, which allows a hacker to trigger a service failure.
The vulnerability of the MagickRealloc function in the cross-platform graphics library GraphicsMagick is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by using a specially created .dpx file...
CVE-2019-17256
IrfanView 4.53 allows a User Mode Write AV starting at DPX!ReadDPXW+0x0000000000001203...
Design/Logic Flaw
IrfanView 4.53 allows a User Mode Write AV starting at DPX!ReadDPXW+0x0000000000001203...
CVE-2019-17256
IrfanView 4.53 is affected by a user‑mode write access vulnerability starting at DPX!ReadDPX_W+0x… (CVE-2019-17256). The issue is described as a User Mode Write AV, with no public exploitation details provided in the supplied documents. Remediation is to update to the latest IrfanView version.
CVE-2019-17256
IrfanView 4.53 allows a User Mode Write AV starting at DPX!ReadDPXW+0x0000000000001203...
Memory Leak
ImageMagick is vulnerable to memory leak. The attacker can trigger a memory leak by inputing malicious DPX image to the WriteDPXImage function in coders/dpx.c...
ImageMagick Resource Management Error Vulnerability (CNVD-2019-29432)
ImageMagick is the United States ImageMagick Studio, Inc. of a set of open source image processing software. A memory leak vulnerability exists in the 'WriteDPXImage' function in the coders/dpx.c file in ImageMagick version 7.0.8-34. An attacker could exploit this vulnerability to cause a denial ...
DEBIAN-CVE-2019-12975
ImageMagick 7.0.8-34 has a memory leak vulnerability in the WriteDPXImage function in coders/dpx.c...
UBUNTU-CVE-2019-12975
ImageMagick 7.0.8-34 has a memory leak vulnerability in the WriteDPXImage function in coders/dpx.c...
graphicsmagick/coder_DPX_fuzzer: Use-of-uninitialized-value in WriteDPXImage
Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5665839926738944 Project: graphicsmagick Fuzzer: libFuzzergraphicsmagickcoderDPXfuzzer Fuzz target binary: coderDPXfuzzer Job Type: libfuzzermsangraphicsmagick Platform Id: linux Crash Type:...
CVE-2017-2903
An exploitable integer overflow exists in the DPX loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.cin' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...
DEBIAN-CVE-2017-2903
An exploitable integer overflow exists in the DPX loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.cin' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...
CVE-2017-2902
An exploitable integer overflow exists in the DPX loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.cin' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...