Lucene search
+L

215 matches found

osv
osv
added 2017/04/19 3:59 p.m.8 views

CVE-2017-7961

The crtknzrparsergb function in cr-tknzr.c in libcroco 0.6.11 and 0.6.12 has an "outside the range of representable values of type long" undefined behavior issue, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a...

7.8CVSS8AI score
Exploits0References6
osv
osv
added 2017/04/19 3:59 p.m.24 views

CVE-2017-7960

The crinputnewfromuri function in cr-input.c in libcroco 0.6.11 and 0.6.12 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted CSS file...

5.5CVSS6.7AI score
Exploits0References4
osv
osv
added 2017/04/19 3:59 p.m.5 views

UBUNTU-CVE-2017-7960

The crinputnewfromuri function in cr-input.c in libcroco 0.6.11 and 0.6.12 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted CSS file...

5.5CVSS7AI score0.02001EPSS
Exploits1References5
osv
osv
added 2017/04/19 3:59 p.m.3 views

ALPINE-CVE-2017-7961

The crtknzrparsergb function in cr-tknzr.c in libcroco 0.6.11 and 0.6.12 has an "outside the range of representable values of type long" undefined behavior issue, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a...

7.8CVSS7.4AI score0.01966EPSS
Exploits1References1
osv
osv
added 2017/04/19 3:59 p.m.3 views

ALPINE-CVE-2017-7960

The crinputnewfromuri function in cr-input.c in libcroco 0.6.11 and 0.6.12 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted CSS file...

5.5CVSS6.9AI score0.02001EPSS
Exploits1References1
ubuntucve
ubuntucve
added 2017/04/19 3:59 p.m.21 views

CVE-2017-7960

The crinputnewfromuri function in cr-input.c in libcroco 0.6.11 and 0.6.12 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted CSS file...

5.5CVSS6.8AI score0.02001EPSS
Exploits1References4
cvelist
cvelist
added 2017/04/19 3:0 p.m.26 views

CVE-2017-7961

The crtknzrparsergb function in cr-tknzr.c in libcroco 0.6.11 and 0.6.12 has an "outside the range of representable values of type long" undefined behavior issue, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a...

7.2AI score0.01966EPSS
Exploits1References6
cve
cve
added 2017/04/19 3:0 p.m.188 views

CVE-2017-7961

The CVE-2017-7961 issue affects libcroco up to version 0.6.12 (cr-tknzr_parse_rgb in cr-tknzr.c). The function may exhibit undefined behavior by converting a double RGB component to a long, potentially enabling denial of service (application crash) or other impact via a crafted CSS file. This is ...

7.8CVSS7.8AI score0.01966EPSS
Exploits1References6Affected Software1
vulnrichment
vulnrichment
added 2017/04/19 3:0 p.m.20 views

CVE-2017-7961

The crtknzrparsergb function in cr-tknzr.c in libcroco 0.6.11 and 0.6.12 has an "outside the range of representable values of type long" undefined behavior issue, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a...

7.6AI score0.01966EPSS
Exploits1References6
debiancve
debiancve
added 2017/04/19 3:0 p.m.37 views

CVE-2017-7961

Removed by vendor...

7.8CVSS7.6AI score0.01966EPSS
Exploits1
alpinelinux
alpinelinux
added 2017/04/19 3:0 p.m.70 views

CVE-2017-7960

The crinputnewfromuri function in cr-input.c in libcroco 0.6.11 and 0.6.12 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted CSS file...

5.5CVSS5.9AI score0.02001EPSS
Exploits1
alpinelinux
alpinelinux
added 2017/04/19 3:0 p.m.446 views

CVE-2017-7961

The crtknzrparsergb function in cr-tknzr.c in libcroco 0.6.11 and 0.6.12 has an "outside the range of representable values of type long" undefined behavior issue, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a...

7.8CVSS8AI score0.01966EPSS
Exploits1
cve
cve
added 2017/04/19 3:0 p.m.187 views

CVE-2017-7960

CVE-2017-7960 affects libcroco 0.6.11 and 0.6.12. The vulnerability is triggered by a crafted CSS file through the cr-input_new_from_uri function in cr-input.c, leading to a heap-based buffer over-read and a potential denial of service. Connected advisories (e.g., Red Hat, Ubuntu, EulerOS/NASL en...

5.5CVSS5.6AI score0.02001EPSS
Exploits1References4Affected Software1
ptsecurity
ptsecurity
added 2017/04/19 12:0 a.m.2 views

PT-2017-18027 · Gnome +4 · Libcroco +4

Name of the Vulnerable Software and Affected Versions: libcroco versions 0.6.11 through 0.6.12 Description: The issue allows remote attackers to cause a denial of service, specifically a heap-based buffer over-read, by providing a crafted CSS file. This is due to a problem in the cr input new fro...

7.8CVSS7.8AI score0.12996EPSS
Exploits8References51
ptsecurity
ptsecurity
added 2017/04/19 12:0 a.m.4 views

PT-2017-18028 · Gnome +2 · Libcroco +2

Name of the Vulnerable Software and Affected Versions: libcroco versions 0.6.11 through 0.6.12 Description: The issue is related to an "outside the range of representable values of type long" undefined behavior in the cr tknzr parse rgb function, which could potentially allow remote attackers to...

7.8CVSS7.9AI score0.12996EPSS
Exploits7References42
Rows per page
Query Builder