Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2009-3604

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocat...

9.3CVSS6.5AI score0.08703EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 5:2 a.m.1 views

SUSE CVE-2016-4564

The DrawImage function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 makes an incorrect function call in attempting to locate the next token, which allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified...

9.8CVSS7.6AI score0.03493EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2020/11/30 8:51 a.m.3 views

Mozilla: Variable time processing of cross-origin images during drawImage calls

Side-channel information leakage in graphics in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS7.4AI score0.0245EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2020/11/30 8:41 a.m.6 views

Mozilla: Variable time processing of cross-origin images during drawImage calls

Side-channel information leakage in graphics in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS7.4AI score0.0245EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2020/11/30 8:37 a.m.4 views

Mozilla: Variable time processing of cross-origin images during drawImage calls

Side-channel information leakage in graphics in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS7.4AI score0.0245EPSS
Exploits1References5
OSV
OSV
added 2017/02/03 3:59 p.m.2 views

DEBIAN-CVE-2016-2318

GraphicsMagick 1.3.23 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted SVG file, related to the 1 DrawImage function in magick/render.c, 2 SVGStartElement function in coders/svg.c, and 3 TraceArcPath function in magick/render.c...

5.5CVSS6.6AI score0.01879EPSS
Exploits0References1
OSV
OSV
added 2016/06/04 4:59 p.m.1 views

DEBIAN-CVE-2016-4564

The DrawImage function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 makes an incorrect function call in attempting to locate the next token, which allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified...

9.8CVSS7.6AI score0.03493EPSS
Exploits0References1
OSV
OSV
added 2016/06/04 12:0 a.m.2 views

UBUNTU-CVE-2016-4564

The DrawImage function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 makes an incorrect function call in attempting to locate the next token, which allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified...

9.8CVSS7.4AI score0.03493EPSS
Exploits0References4
Rows per page
Query Builder