EUVD-2018-17034

Malware in sbrugna...

CVE-2018-16782

libimageworsener.a in ImageWorsener 1.3.2 has a buffer overflow in the bmprreadrleinternal function in imagew-bmp.c...

CVE-2017-9203

imagew-main.c:960:12 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service buffer underflow via a crafted image, related to imagew-bmp.c...

CVE-2017-9203

imagew-main.c:960:12 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service buffer underflow via a crafted image, related to imagew-bmp.c...

CVE-2017-9204

The iwgetui16le function in imagew-util.c:405:23 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service invalid read and SEGV via a crafted image, related to imagew-jpeg.c...

Heap overflow

The iwgetui16le function in imagew-util.c:405:23 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted image, related to imagew-jpeg.c...

CVE-2017-9094

The lzwaddtodict function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service infinite loop via a crafted image...

Design/Logic Flaw

The bmprreaduncompressed function in imagew-bmp.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service memory consumption via a crafted image...

CVE-2017-8327

CVE-2017-8327 affects ImageWorsener prior to 1.3.1. The vulnerability is in the bmpr_read_uncompressed function (imagew-bmp.c) of libimageworsener.a, where crafted BMP images can trigger memory consumption leading to a denial of service. Public sources in the connected documents corroborate a DoS...

CVE-2017-7940

The CVE-2017-7940 issue affects ImageWorsener 1.3.0, specifically the iw_read_gif_file function in imagew-gif.c of libimageworsener.a. A crafted GIF can cause memory exhaustion, enabling a remote attacker to consume available memory. Public references (Gentoo GLSA 201706-06 and CNVD/CVE replicas)...

Heap overflow

The iwmiffrconvertrow32 function in imagew-miff.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted file...

CVE-2017-7623

The iwmiffrconvertrow32 function in imagew-miff.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted file...

CVE-2017-7624

The CVE-2017-7624 entry concerns ImageWorsener 1.3.0, specifically the iw_read_bmp_file function in imagew-bmp.c within libimageworsener.a. A crafted BMP file can cause memory exhaustion on the host, allowing a remote attacker to consume available memory. Exploitation details beyond the descripti...

CVE-2017-7452

Summary: ImageWorsener 1.3.0 contains a vulnerability in the iwbmp_read_info_header() function (imagew-bmp.c, libimageworsener.a) that can cause a denial of service via a crafted BMP file. Affected component: ImageWorsener library. Root cause & impact: NULL pointer dereference when processing a c...