SuSE 10 Security Update : Qt (ZYPP Patch Number 2187)

Multiple integer overflows have been found in image processing functions within the QT library. These could potentially lead to heap overflows and code execution. CVE-2006-4811 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

cairo integer overflow

Multiple integer overflows in Cairo before 1.4.12 might allow remote attackers to execute arbitrary code, as demonstrated using a crafted PNG image with large width and height values, which is not properly handled by the readpng function...

Ubuntu 5.10 / 6.06 LTS / 6.10 : imlib2 vulnerabilities (USN-376-1)

M. Joonas Pihlaja discovered that imlib2 did not sufficiently verify the validity of ARGB, JPG, LBM, PNG, PNM, TGA, and TIFF images. If a user were tricked into viewing or processing a specially crafted image with an application that uses imlib2, the flaws could be exploited to execute arbitrary...

openSUSE 10 Security Update : qt3 (qt3-2189)

Multiple integer overflows have been found in image processing functions within the QT library. These could potentially lead to heap overflows and code execution. CVE-2006-4811 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...

openSUSE 10 Security Update : qt (qt-2188)

Multiple integer overflows have been found in image processing functions within the QT library. These could potentially lead to heap overflows and code execution. CVE-2006-4811 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...

RHEL 4 / 5 : php (RHSA-2007:0890)

The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2007:0890 advisory. - gd / php-gd ImageCreateFromPng infinite loop caused by truncated PNG CVE-2007-2756 - php chunksplit integer overflow CVE-2007-2872 - p...

Buffer overflow

Multiple buffer overflows in the image-processing APIs in Cosminexus Developer's Kit for Java in Cosminexus 4 through 7 allow remote attackers to cause a denial of service or execute arbitrary code via unspecified vectors...

CVE-2007-4758

Multiple buffer overflows in the image-processing APIs in Cosminexus Developer's Kit for Java in Cosminexus 4 through 7 allow remote attackers to cause a denial of service or execute arbitrary code via unspecified vectors...

CVE-2007-4759

Multiple unspecified vulnerabilities in the image-processing APIs in Cosminexus Developer's Kit for Java in Cosminexus 4 through 7 allow remote attackers to cause a denial of service via unspecified vectors...

Design/Logic Flaw

Multiple unspecified vulnerabilities in the image-processing APIs in Cosminexus Developer's Kit for Java in Cosminexus 4 through 7 allow remote attackers to cause a denial of service via unspecified vectors...

CVE-2007-4759

Multiple unspecified vulnerabilities in the image-processing APIs in Cosminexus Developer's Kit for Java in Cosminexus 4 through 7 allow remote attackers to cause a denial of service via unspecified vectors...

CVE-2007-4759

Technical details about CVE-2007-4759 are not publicly available in the provided connected documents; the materials reiterate a general DoS via image-processing APIs in Cosminexus 4–7. Monitor for updates.

CVE-2007-4758

Multiple buffer overflows in the image-processing APIs in Cosminexus Developer's Kit for Java in Cosminexus 4 through 7 allow remote attackers to cause a denial of service or execute arbitrary code via unspecified vectors...

CVE-2007-4758

The CVE-2007-4758 entry affects the Cosminexus Developer’s Kit for Java (Cosminexus 4–7). The vulnerability is a buffer overflow in the image-processing APIs, with the root cause described as multiple buffer overflows. Consequences stated include denial of service or execution of arbitrary code v...

Mandrake Linux Security Advisory : tetex (MDKSA-2007:164)

Maurycy Prodeus found an integer overflow vulnerability in the way various PDF viewers processed PDF files. An attacker could create a malicious PDF file that could cause tetex to crash and possibly execute arbitrary code open a user opening the file. In addition, tetex contains an embedded copy ...

CVE-2007-4314

pixlie.php in Pixlie 1.7 allows remote attackers to trigger the reading and JPEG image processing of files in a remote directory tree via a URL in the root parameter. NOTE: this can be leveraged for traffic amplification or other denial of service...

CVE-2007-4314

pixlie.php in Pixlie 1.7 allows remote attackers to trigger the reading and JPEG image processing of files in a remote directory tree via a URL in the root parameter. NOTE: this can be leveraged for traffic amplification or other denial of service...

CVE-2007-4198

The fsdataputstr function in ntfs.c in fls in Brian Carrier The Sleuth Kit TSK before 2.09 does not validate a certain length value, which allows user-assisted remote attackers to cause a denial of service application crash and prevent examination of certain NTFS files via a malformed NTFS image,...

[SECURITY] Fedora 7 Update: GraphicsMagick-1.1.8-2.fc7

GraphicsMagick is a comprehensive image processing package which is initial ly based on ImageMagick 5.5.2, but which has undergone significant re-work by the GraphicsMagick Group to significantly improve the quality and performan ce of the software...

CVE-2007-3794

CVE-2007-3794 is a concrete buffer overflow vulnerability affecting Hitachi Cosminexus components (Cosminexus V4 through V7, Processing Kit for XML, Developer’s Kit for Java) and third‑party software using this stack. The issue arises when processing GIF images via image‑processing APIs in a Java...