203 matches found
October 1, 2019, update for Office 2016 (KB4475585)
October 1, 2019, update for Office 2016 KB4475585 This article describes update 4475585 for Microsoft Office 2016 that was released on October 1, 2019.Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2016. It doesn't apply t...
The vulnerability of the histogram construction utility for PGM and PPM files, pnmhistmap, related to segmentation errors, allows a hacker to cause a service failure.
The vulnerability of the histogram construction utility for PGM and PPM files, pnmhistmap, is related to segmentation errors. Exploiting this vulnerability can allow an attacker to cause a service failure in the application by entering a specially crafted sequence of data in the command line...
TCPFLOW Stack Buffer Overflow Vulnerability
TCPFLOW is a network monitoring tool that records TCP sessions. A stack buffer overflow vulnerability exists in the 'setbit' function of the iptree.h file in TCPFLOW version 1.5.0, which originates from a program receiving an incorrect value, which results in a computation error. An attacker can...
ALPINE-CVE-2018-18409
A stack-based buffer over-read exists in setbit at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an addresshistogram call or a gethistogram call...
DEBIAN-CVE-2018-18409
A stack-based buffer over-read exists in setbit at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an addresshistogram call or a gethistogram call...
UBUNTU-CVE-2018-18409
A stack-based buffer over-read exists in setbit at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an addresshistogram call or a gethistogram call...
GHSA-9WCM-RRVH-QJC8 High severity vulnerability that affects colorscore
Withdrawn, accidental duplicate publish. The initialize method in the Histogram class in lib/colorscore/histogram.rb in the colorscore gem before 0.0.5 for Ruby allows context-dependent attackers to execute arbitrary code via shell metacharacters in the 1 imagepath, 2 colors, or 3 depth variable...
GHSA-73QW-WW62-M54X colorscore Command Injection vulnerability
The initialize method in the Histogram class in lib/colorscore/histogram.rb in the colorscore gem before 0.0.5 for Ruby allows context-dependent attackers to execute arbitrary code via shell metacharacters in the 1 imagepath, 2 colors, or 3 depth variable...
colorscore Command Injection vulnerability
The initialize method in the Histogram class in lib/colorscore/histogram.rb in the colorscore gem before 0.0.5 for Ruby allows context-dependent attackers to execute arbitrary code via shell metacharacters in the 1 imagepath, 2 colors, or 3 depth variable...
The vulnerability of the console-based graphic editor ImageMagick, which allows a hacker to cause a memory access violation
The vulnerability of the console-based graphic editor ImageMagick arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause the function WriteHISTOGRAMImage in coders/histogram.c to lose acces...
ImageMagick 'coders/histogram.c' Denial of Service Vulnerability
ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A denial of service vulnerability exists in the 'WriteHISTOGRAMImage' function in the coders/histogram.c file in...
DEBIAN-CVE-2017-11531
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the WriteHISTOGRAMImage function in coders/histogram.c...
UBUNTU-CVE-2017-11531
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the WriteHISTOGRAMImage function in coders/histogram.c...
CVE-2017-11531
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the WriteHISTOGRAMImage function in coders/histogram.c...
CVE-2017-11531
CVE-2017-11531 is rejected/not used per the description.
The vulnerability of Google Chrome browser allows a perpetrator to gain access to local files.
The vulnerability of the Histogram component in Google Chrome browser is related to pointer assignment errors. Exploiting this vulnerability can allow a malicious actor to gain access to local files through a specially crafted HTML page...
Type confusion
Type confusion in Histogram in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, allowed a remote attacker to potentially exploit a near null dereference via a crafted HTML page...
CVE-2017-5023
Type confusion in Histogram in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, allowed a remote attacker to potentially exploit a near null dereference via a crafted HTML page...
UBUNTU-CVE-2017-5023
Type confusion in Histogram in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, allowed a remote attacker to potentially exploit a near null dereference via a crafted HTML page...
chromium-browser: type confusion in metrics
Type confusion in Histogram in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, allowed a remote attacker to potentially exploit a near null dereference via a crafted HTML page...