17 matches found
EUVD-2016-2672
Malware in sbrugna...
EUVD-2017-11953
Malware in sbrugna...
EUVD-2022-53436
Malicious code in bioql PyPI...
CVE-2023-39486
PDF-XChange Editor JP2 File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit...
PDF-XChange Editor 缓冲区错误漏洞
Tracker Software PDF-XChange Editor is a suite of software for viewing and editing PDF format files from Tracker Software, a Canadian company. A buffer error vulnerability exists in PDF-XChange Editor that stems from problems parsing certain JP2 files...
CVE-2022-35171
When a user opens manipulated JPEG 2000 .jp2, jp2k.x3d files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application. The file format details along with their CVE relevant...
Irfanview Arbitrary Code Execution Vulnerability
IrfanView is very fast, small, compact and innovative free graphic viewer for Windows 9x, ME, NT, 2000, XP, 2003, 2008, Vista, Windows 7, Windows 8, Windows 10. An arbitrary code execution vulnerability exists in Irfanview version 4.53. The vulnerability can be exploited to execute arbitrary code...
PT-2017-7904 · Openjpeg +2 · Openjpeg +2
Name of the Vulnerable Software and Affected Versions: OpenJPEG versions prior to 2.2.0 Description: The issue is related to division-by-zero vulnerabilities in certain functions, specifically opj pi next cprl, opj pi next pcrl, and opj pi next rpcl, which are located in the pi.c file. These...
UBUNTU-CVE-2016-9116
NULL Pointer Access in function imagetopnm of convert.c:2226jp2 in OpenJPEG 2.1.2. Impact is Denial of Service. Someone must open a crafted j2k file...
Debian DLA-138-1 : jasper security update
An off-by-one flaw, leading to a heap-based buffer overflow CVE-2014-8157, and an unrestricted stack memory use flaw CVE-2014-8158 were found in JasPer, a library for manipulating JPEG-2000 files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute...
Debian DLA-121-1 : jasper security update
Jose Duart of the Google Security Team discovered a double free flaw CVE-2014-8137 and a heap-based buffer overflow flaw CVE-2014-8138 in JasPer, a library for manipulating JPEG-2000 files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary...
[SECURITY] [DLA 138-1] jasper security update
Package : jasper Version : 1.900.1-7+squeeze4 CVE ID : CVE-2014-8157 CVE-2014-8158 Debian Bug : 775970 An off-by-one flaw, leading to a heap-based buffer overflow CVE-2014-8157, and an unrestricted stack memory use flaw CVE-2014-8158 were found in JasPer, a library for manipulating JPEG-2000 file...
Debian: Security Advisory (DSA-3138-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 121-1] jasper security update
Package : jasper Version : 1.900.1-7+squeeze3 CVE ID : CVE-2014-8137 CVE-2014-8138 Jose Duart of the Google Security Team discovered a double free flaw CVE-2014-8137 and a heap-based buffer overflow flaw CVE-2014-8138 in JasPer, a library for manipulating JPEG-2000 files. A specially crafted file...
DLA-121-1 jasper - security update
Bulletin has no description...
[SECURITY] [DSA 3089-1] jasper security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3089-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso December 04, 2014 http://www.debian.org/security/faq -...
GLSA-201201-10 : JasPer: User-assisted execution of arbitrary code
The remote host is affected by the vulnerability described in GLSA-201201-10 JasPer: User-assisted execution of arbitrary code Two vulnerabilities have been found in JasPer: The jpccoxgetcompparms function in libjasper/jpc/jpccs.c contains an error that could overwrite certain callback pointers,...