7 matches found
MiracleLinux 9 : grub2-2.06-104.el9_6.ML.1 (AXSA:2025-10402:07)
The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10402:07 advisory. grub2: reader/jpeg: Heap OOB Write during JPEG parsing CVE-2024-45774 grub2: commands/extcmd: Missing check for failed allocation CVE-2024-45775...
EulerOS 2.0 SP11 : gdk-pixbuf2 (EulerOS-SA-2025-2191)
According to the versions of the gdk-pixbuf2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw exists in gdkpixbuf within the gdkpixbufjpegimageloadincrement function io-jpeg.c and in glibs gbase64encodestep glib/gbase64.c. When...
CVE-2022-27114
There is a vulnerability in htmldoc 1.9.16. In imageloadjpeg function image.cxx when it calls malloc,'img-width' and 'img-height' they are large enough to cause an integer overflow. So, the malloc function may return a heap blosmaller than the expected size, and it will cause a buffer...
xnview <= 1.98.5 - Multiple Vulnerabilities
No description provided by source. Luigi Auriemma Application: XnView http://www.xnview.com Versions: = 1.98.5 Platforms: Windows Bugs: A integer overflow in width/height calculation B jpeg heap overflow C ICO heap overflow D PCX heap overflow E FLI heap overflow Exploitation: via file Date: 16 F...
xnview 1.98.5 - Multiple Vulnerabilities
xnview 1.98.5 - Multiple Vulnerabilities Luigi Auriemma Application: XnView http://www.xnview.com Versions: = 1.98.5 Platforms: Windows Bugs: A integer overflow in width/height calculation B jpeg heap overflow C ICO heap overflow D PCX heap overflow E FLI heap overflow Exploitation: via file Date...
OpenJDK ImageI/O JPEG heap overflow (6874643)
Integer overflow in the JPEGImageReader implementation in the ImageI/O component in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to execute arbitrary code via large subsample dimensions in a JPEG file...
openSUSE Security Update : java-1_6_0-openjdk (java-1_6_0-openjdk-1613)
New icedtea update to fix : - ICCProfile file existence detection information leak; CVE-2009-3728: CVSS v2 Base Score: 5.0 - BMP parsing DoS with UNC ICC links; CVE-2009-3885: CVSS v2 Base Score: 5.0 - resurrected classloaders can still have children; CVE-2009-3881: CVSS v2 Base Score: 7.5 -...