CVE-2009-2347

Multiple integer overflows in inter-color spaces conversion tools in libtiff 3.8 through 3.8.2, 3.9, and 4.0 allow context-dependent attackers to execute arbitrary code via a TIFF image with large 1 width and 2 height values, which triggers a heap-based buffer overflow in the a cvtwholeimage...

CVE-2009-2347

CVE-2009-2347 affects libtiff 3.8 through 4.0, where multiple integer overflows in inter-color spaces conversion tools enable context-dependent attackers to trigger a heap-based buffer overflow via TIFF images with large width/height. The overflow occurs in cvt_whole_image (tiff2rgba) and tiffcvt...

[oCERT-2009-012] libtiff tools integer overflows

2009-012 libtiff tools integer overflows Description: The libtiff image library tools suffer from integer overflows which may lead to a potentially exploitable heap overflow and result in arbitrary code execution. The libtiff package ships a library, for reading and writing TIFF, as well as a sma...

libtiff multiple security vulnerabilities

Crash on LZWDecodeCompat. Potantial integer overflows in tiff2rgba and rgb2ycbcr...

DSA-1832-1 camlimages - arbitrary code execution

Bulletin has no description...

Mandrake Security Advisory MDVSA-2009:142 (jasper)

The remote host is missing an update to jasper announced via advisory MDVSA-2009:142. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Mandrake Security Advisory MDVSA-2009:144 (ghostscript)

The remote host is missing an update to ghostscript announced via advisory MDVSA-2009:144. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Mandrake Security Advisory MDVSA-2009:143 (netpbm)

The remote host is missing an update to netpbm announced via advisory MDVSA-2009:143. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Mandrake Security Advisory MDVSA-2009:144 (ghostscript)

The remote host is missing an update to ghostscript announced via advisory MDVSA-2009:144. OpenVAS Vulnerability Test $Id: mdksa2009144.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:144 ghostscript Authors: Thomas Reinke Copyright: Copyright c 2009...

CVE-2009-2295

Multiple integer overflows in CamlImages 2.2 and earlier might allow context-dependent attackers to execute arbitrary code via a crafted PNG image with large width and height values that trigger a heap-based buffer overflow in the 1 readpngfile or 2 readpngfileasrgb24 function...

CVE-2009-2295

Multiple integer overflows in CamlImages 2.2 and earlier might allow context-dependent attackers to execute arbitrary code via a crafted PNG image with large width and height values that trigger a heap-based buffer overflow in the 1 readpngfile or 2 readpngfileasrgb24 function...

Mandriva Linux Security Advisory : pidgin (MDVSA-2009:147)

Security vulnerabilities has been identified and fixed in pidgin : Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these detail...

Mandrake Security Advisory MDVSA-2009:140 (gaim)

The remote host is missing an update to gaim announced via advisory MDVSA-2009:140. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Mandrake Security Advisory MDVSA-2009:140 (gaim)

The remote host is missing an update to gaim announced via advisory MDVSA-2009:140. OpenVAS Vulnerability Test $Id: mdksa2009140.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:140 gaim Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

Mandriva Linux Security Advisory : jasper (MDVSA-2009:142-1)

Multiple security vulnerabilities has been identified and fixed in jasper : The jpcqcxgetcompparms function in jpc/jpccs.c for the JasPer JPEG-2000 library libjasper before 1.900 allows remote user-assisted attackers to cause a denial of service crash and possibly corrupt the heap via malformed...

Debian DSA-1819-1 : vlc - several vulnerabilities

Several vulnerabilities have been discovered in vlc, a multimedia player and streamer. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-1768 Drew Yao discovered that multiple integer overflows in the MP4 demuxer, Real demuxer and Cinepak codec can le...

Microsoft Power Point multiple security vulnerabilities

Multiple buffer overflows, memroy corruptions, integer overflows, etc...

CVE-2009-0791

Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops filter in CUPS 1.1.17, 1.1.22, and 1.3.7, GPdf, and kdegraphics KPDF, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PDF file that trigger...

CVE-2009-0791

Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops filter in CUPS 1.1.17, 1.1.22, and 1.3.7, GPdf, and kdegraphics KPDF, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PDF file that trigger...

CVE-2009-0791

Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops filter in CUPS 1.1.17, 1.1.22, and 1.3.7, GPdf, and kdegraphics KPDF, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PDF file that trigger...