CVE-2017-12145

In libquicktime 1.2.4, an allocation failure was found in the function quicktimereadftyp in ftyp.c, which allows attackers to cause a denial of service via a crafted file...

DEBIAN-CVE-2017-12145

In libquicktime 1.2.4, an allocation failure was found in the function quicktimereadftyp in ftyp.c, which allows attackers to cause a denial of service via a crafted file...

CVE-2017-12145

In libquicktime 1.2.4, an allocation failure was found in the function quicktimereadftyp in ftyp.c, which allows attackers to cause a denial of service via a crafted file...

CVE-2017-12145

CVE-2017-12145 affects libquicktime 1.2.4. The vulnerability is an allocation failure in the function quicktime_read_ftyp (ftyp.c) that can be triggered by processing a crafted file, leading to a denial of service. The available documents do not provide exploit details, affected products beyond t...

CVE-2017-12143

In libquicktime 1.2.4, an allocation failure was found in the function quicktimereadinfo in lqtquicktime.c, which allows attackers to cause a denial of service via a crafted file...

CVE-2017-12143

CVE-2017-12143 affects libquicktime 1.2.4 . The root cause is an allocation failure in the function quicktime_read_info inside lqt_quicktime.c , which can be triggered by processing a crafted file and leads to a denial of service . The vulnerability is described with a network-vector exploitation...

CVE-2017-12145

In libquicktime 1.2.4, an allocation failure was found in the function quicktimereadftyp in ftyp.c, which allows attackers to cause a denial of service via a crafted file...

CVE-2017-12143

In libquicktime 1.2.4, an allocation failure was found in the function quicktimereadinfo in lqtquicktime.c, which allows attackers to cause a denial of service via a crafted file...

libquicktime 'quicktime_read_ftyp' function denial of service vulnerability

libquicktime is a library for reading and writing files in quicktime, avi and mp4 formats. A security vulnerability exists in the 'quicktimereadftyp' function in the ftyp.c file in libquicktime version 1.2.4. An attacker can exploit this vulnerability to cause a denial of service with the help of...

libquicktime 'quicktime_read_info' function denial of service vulnerability

libquicktime is a library for reading and writing files in quicktime, avi and mp4 formats. A security vulnerability exists in the 'quicktimereadinfo' function of the lqtquicktime.c file in libquicktime version 1.2.4. An attacker can exploit this vulnerability to cause a denial of service with the...

Debian DLA-1042-1 : libquicktime security update

CVE-2017-9122 The quicktimereadmoov function in moov.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service infinite loop and CPU consumption via a crafted mp4 file. CVE-2017-9123 The lqtframeduration function in lqtquicktime.c in libquicktime 1.2.4 allows remote attackers t...

SUSE SLED12 / SLES12 Security Update : libquicktime (SUSE-SU-2017:1986-1)

This update for libquicktime fixes the following issues: Security issue fixed : - CVE-2016-2399: Adjust patch to prevent endless loop when there are less than 256 bytes to read. bsc1022805 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE...

[SECURITY] [DLA 1042-1] libquicktime security update

Package : libquicktime Version : 2:1.2.4-3+deb7u2 CVE ID : CVE-2017-9122 CVE-2017-9123 CVE-2017-9124 CVE-2017-9125 CVE-2017-9126 CVE-2017-9127 CVE-2017-9128 Debian Bug : 864664 CVE-2017-9122 The quicktimereadmoov function in moov.c in libquicktime 1.2.4 allows remote attackers to cause a denial o...

SUSE-SU-2017:1986-1 Security update for libquicktime

This update for libquicktime fixes the following issues: Security issue fixed: - CVE-2016-2399: Adjust patch to prevent endless loop when there are less than 256 bytes to read. bsc1022805...

SUSE-SU-2017:1988-1 Security update for libquicktime

This update for libquicktime fixes the following issues: Security issues fixed: - CVE-2017-9122: A DoS in quicktimereadmoov function in moov.c via a crafted mp4 file was fixed. bsc1044077 - CVE-2017-9123: An invalid memory read in lqtframeduration via a crafted mp4 file was fixed. bsc1044009 -...

DLA-1042-1 libquicktime - security update

Bulletin has no description...

Updated libquicktime packages fix security vulnerabilities

A DoS in quicktimereadmoov function in moov.c via acrafted mp4 file was fixed CVE-2017-9122. An invalid memory read in lqtframeduration via a crafted mp4 file was fixed CVE-2017-9123. A NULL pointer dereference in quicktimematch32 via a crafted mp4 file was fixed CVE-2017-9124. A DoS in...

MGASA-2017-0220 Updated libquicktime packages fix security vulnerabilities

A DoS in quicktimereadmoov function in moov.c via acrafted mp4 file was fixed CVE-2017-9122. An invalid memory read in lqtframeduration via a crafted mp4 file was fixed CVE-2017-9123. A NULL pointer dereference in quicktimematch32 via a crafted mp4 file was fixed CVE-2017-9124. A DoS in...

openSUSE Security Update : libquicktime (openSUSE-2017-785)

This update for libquicktime fixes the following issues : - CVE-2017-9122: A DoS in quicktimereadmoov function in moov.c via acrafted mp4 file was fixed. boo1044077 - CVE-2017-9123: An invalid memory read in lqtframeduration via a crafted mp4 file was fixed. boo1044009 - CVE-2017-9124: A NULL...

SUSE SLED12 / SLES12 Security Update : libquicktime (SUSE-SU-2017:1769-1)

This update for libquicktime fixes the following issues : - CVE-2017-9122: A DoS in quicktimereadmoov function in moov.c via acrafted mp4 file was fixed. bsc1044077 - CVE-2017-9123: An invalid memory read in lqtframeduration via a crafted mp4 file was fixed. bsc1044009 - CVE-2017-9124: A NULL...