ImageMagick has a possible infinite loop in its JPEG encoder when using `jpeg:extent`

A continue statement in the JPEG extent binary search loop in the jpeg encoder causes an infinite loop when writing persistently fails. An attacker can trigger a 100% CPU consumption and process hang Denial of Service with a crafted image...

EUVD-2015-7121

Malware in sbrugna...

EUVD-2024-22605

Malicious code in bioql PyPI...

Libheif DoS CVE-2024-25269 (macOS)

According to its self-reported version, libheif prior to 1.17.6 contains a memory leak in the function JpegEncoder::Encode. This flaw allows an attacker to cause a denial of service attack. Note that Nessus has not tested for this issue but has instead relied only on the application's self-report...

ROS-20240422-04

A vulnerability in the JpegEncoder::Encode function of the libheif file format decoder and encoder is related to a memory leak. memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of denial of service...

SUSE CVE-2024-25269

libheif = 1.17.6 contains a memory leak in the function JpegEncoder::Encode. This flaw allows an attacker to cause a denial of service attack...

CVE-2024-25269

libheif = 1.17.6 contains a memory leak in the function JpegEncoder::Encode. This flaw allows an attacker to cause a denial of service attack...

CVE-2024-25269

libheif = 1.17.6 contains a memory leak in the function JpegEncoder::Encode. This flaw allows an attacker to cause a denial of service attack...

SUSE CVE-2015-7189

Race condition in the JPEGEncoder function in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow via vectors involving a CANVAS element and crafted JavaScript code...

Mozilla Firefox Security Advisory (MFSA2015-123) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

Updated iceape packages fix security vulnerabilities

Updated iceape packages fix security issues: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code vi...

Mozilla Firefox and Firefox ESR 'JPEGEncoder' Function Competition Condition Vulnerability

Mozilla Firefox is an open source web browser.Firefox ESR is an extended support version of Firefox. A competitive condition vulnerability exists in the Mozilla Firefox 'JPEGEncoder' function, which can be exploited by remote attackers to construct special CANVAS elements that can be tricked into...

Race condition

Race condition in the JPEGEncoder function in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow via vectors involving a CANVAS element and crafted JavaScript code...

CVE-2015-7189

Race condition in the JPEGEncoder function in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow via vectors involving a CANVAS element and crafted JavaScript code...

CVE-2015-7189

CVE-2015-7189 (JPEGEncoder race condition in Mozilla Firefox) is a documented vulnerability affecting Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4. The issue allows a remote attacker to cause arbitrary code execution or a denial of service via a crafted CANVAS element and JavaScri...

Mozilla: Buffer overflow during image interactions in canvas (MFSA 2015-123)

Race condition in the JPEGEncoder function in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow via vectors involving a CANVAS element and crafted JavaScript code...

UBUNTU-CVE-2015-7189

Race condition in the JPEGEncoder function in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow via vectors involving a CANVAS element and crafted JavaScript code...

CVE-2015-7189

Race condition in the JPEGEncoder function in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow via vectors involving a CANVAS element and crafted JavaScript code...

Buffer overflow during image interactions in canvas — Mozilla

Security researcher Looben Yang reported a buffer overflow in the JPEGEncoder function during script interactions with a canvas element. This is caused by a race condition and incorrectly matched sizes following image interactions. This leads to a potentially exploitable crash...