741 matches found
CVE-2018-5251
CVE-2018-5251 affects Ming/libming, specifically libming 0.4.8. The issue is an integer signedness error in readSBits (util/read.c) that can be triggered by a crafted SWF file to cause a denial of service. Multiple connected advisories confirm the same vulnerability and its presence across distri...
SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2017:3388-1)
This update for ImageMagick fixes the following issues : - CVE-2017-14989: use-after-free in RenderFreetype in MagickCore/annotate.c could lead to denial of service bsc1061254 - CVE-2017-14682: GetNextToken in MagickCore/token.c heap buffer overflow could lead to denial of service bsc1060176 -...
openSUSE Security Update : GraphicsMagick (openSUSE-2017-1362)
This update for GraphicsMagick fixes the following issues : - CVE-2017-12140: ReadDCMImage in coders\dcm.c has a ninteger signedness error leading to excessive memory consumption bnc1051847 - CVE-2017-14994: NULL pointer in ReadDCMImage in coders/dcm.c could lead to denial of service bnc1061587 -...
Denial Of Service (DoS)
FFMPEG is vulnerable to denial of service DoS attacks. A malicious user can launch an attack by sending a malicious MPEG file to the gmcmmx function in libavcodec/x86/mpegvideodsp.c. Since it fails to validate the width and height of the input, it leads to integer signedness error and an...
Integer overflow
The gmcmmx function in libavcodec/x86/mpegvideodsp.c in FFmpeg 2.3 and 3.4 does not properly validate widths and heights, which allows remote attackers to cause a denial of service integer signedness error and out-of-array read via a crafted MPEG file...
CVE-2017-17081
The gmcmmx function in libavcodec/x86/mpegvideodsp.c in FFmpeg 2.3 and 3.4 does not properly validate widths and heights, which allows remote attackers to cause a denial of service integer signedness error and out-of-array read via a crafted MPEG file...
CVE-2017-17081
The gmcmmx function in libavcodec/x86/mpegvideodsp.c in FFmpeg 2.3 and 3.4 does not properly validate widths and heights, which allows remote attackers to cause a denial of service integer signedness error and out-of-array read via a crafted MPEG file...
CVE-2017-17081
CVE-2017-17081 affects FFmpeg’s x86 MPEG video DSP (libavcodec/x86/mpegvideodsp.c) where the gmc_mmx path does not properly validate widths and heights, enabling a crafted MPEG file to trigger a denial of service via an integer signedness error and out-of-bounds read. The vulnerability is present...
CVE-2017-17081
The gmcmmx function in libavcodec/x86/mpegvideodsp.c in FFmpeg 2.3 and 3.4 does not properly validate widths and heights, which allows remote attackers to cause a denial of service integer signedness error and out-of-array read via a crafted MPEG file...
CVE-2017-15602
In GNU Libextractor 1.4, there is an integer signedness error for the chunk size in the EXTRACTORnsfeextractmethod function in plugins/nsfeextractor.c, leading to an infinite loop for a crafted size...
CVE-2017-15602
In GNU Libextractor 1.4, there is an integer signedness error for the chunk size in the EXTRACTORnsfeextractmethod function in plugins/nsfeextractor.c, leading to an infinite loop for a crafted size...
Integer overflow
In GNU Libextractor 1.4, there is an integer signedness error for the chunk size in the EXTRACTORnsfeextractmethod function in plugins/nsfeextractor.c, leading to an infinite loop for a crafted size...
CVE-2017-15602
GNU Libextractor 1.4 contains a signedness error in EXTRACTOR_nsfe_extract_method (plugins/nsfe_extractor.c) that can cause an infinite loop when given a crafted chunk size. Affected component is the nsfe_extractor, with the root cause described as an integer signedness issue for chunk size. The ...
CVE-2017-15602
In GNU Libextractor 1.4, there is an integer signedness error for the chunk size in the EXTRACTORnsfeextractmethod function in plugins/nsfeextractor.c, leading to an infinite loop for a crafted size...
CVE-2017-14629
In sam2p 0.49.3, the inxpmreader function in inxpm.cpp has an integer signedness error, leading to a crash when writing to an out-of-bounds array element...
CVE-2017-14631
In sam2p 0.49.3, the pcxLoadRaster function in inpcx.cpp has an integer signedness error leading to a heap-based buffer overflow...
CVE-2017-14631
In sam2p 0.49.3, the pcxLoadRaster function in inpcx.cpp has an integer signedness error leading to a heap-based buffer overflow...
CVE-2017-14631
In sam2p 0.49.3, the pcxLoadRaster function in inpcx.cpp has an integer signedness error leading to a heap-based buffer overflow...
Heap overflow
In sam2p 0.49.3, the pcxLoadRaster function in inpcx.cpp has an integer signedness error leading to a heap-based buffer overflow...
CVE-2017-14629
In sam2p 0.49.3, the inxpmreader function in inxpm.cpp has an integer signedness error, leading to a crash when writing to an out-of-bounds array element...