762 matches found
CVE-2017-12982
The bmpreadinfoheader function in bin/jp2/convertbmp.c in OpenJPEG 2.2.0 does not reject headers with a zero biBitCount, which allows remote attackers to cause a denial of service memory allocation failure in the opjimagecreate function in lib/openjp2/image.c, related to the opjalignedallocn...
CVE-2017-14042
A memory allocation failure was discovered in the ReadPNMImage function in coders/pnm.c in GraphicsMagick 1.3.26. The vulnerability causes a big memory allocation, which may lead to remote denial of service in the MagickRealloc function in magick/memory.c...
CVE-2017-14042
A memory allocation failure was discovered in the ReadPNMImage function in coders/pnm.c in GraphicsMagick 1.3.26. The vulnerability causes a big memory allocation, which may lead to remote denial of service in the MagickRealloc function in magick/memory.c...
Updated openjpeg2 packages fix security vulnerabilities
Patches from upstream have been added to fix two heap-based buffer overflows and a memory allocation failure...
MGASA-2017-0299 Updated openjpeg2 packages fix security vulnerabilities
Patches from upstream have been added to fix two heap-based buffer overflows and a memory allocation failure...
OpenJPEG Denial of Service Vulnerability (CNVD-2017-28761)
OpenJPEG is a C-based open source JPEG 2000 codec . A security vulnerability exists in the 'bmpreadinfoheader' function in bin/jp2/convertbmp.c in OpenJPEG version 2.2.0, which originates from the program receiving a packet header with a biBitCount of zero. A remote attacker could use this...
Design/Logic Flaw
The bmpreadinfoheader function in bin/jp2/convertbmp.c in OpenJPEG 2.2.0 does not reject headers with a zero biBitCount, which allows remote attackers to cause a denial of service memory allocation failure in the opjimagecreate function in lib/openjp2/image.c, related to the opjalignedallocn...
ALPINE-CVE-2017-12982
The bmpreadinfoheader function in bin/jp2/convertbmp.c in OpenJPEG 2.2.0 does not reject headers with a zero biBitCount, which allows remote attackers to cause a denial of service memory allocation failure in the opjimagecreate function in lib/openjp2/image.c, related to the opjalignedallocn...
CVE-2017-12982
The bmpreadinfoheader function in bin/jp2/convertbmp.c in OpenJPEG 2.2.0 does not reject headers with a zero biBitCount, which allows remote attackers to cause a denial of service memory allocation failure in the opjimagecreate function in lib/openjp2/image.c, related to the opjalignedallocn...
CVE-2017-12982
Summary: CVE-2017-12982 affects OpenJPEG 2.2.0. The bmp_read_info_header function in bin/jp2/convertbmp.c fails to reject headers with a zero biBitCount, which can trigger a denial of service via memory allocation failure in opj_image_create, related to opj_aligned_alloc_n in opj_malloc.c. The vu...
EulerOS 2.0 SP1 : elfutils (EulerOS-SA-2017-1142)
According to the version of the elfutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The allocateelf function in common.h in elfutils before 0.168 allows remote attackers to cause a denial of service crash via a crafted ELF file,...
EulerOS 2.0 SP2 : elfutils (EulerOS-SA-2017-1143)
According to the version of the elfutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The allocateelf function in common.h in elfutils before 0.168 allows remote attackers to cause a denial of service crash via a crafted ELF file,...
CVE-2016-10254
The allocateelf function in common.h in elfutils before 0.168 allows remote attackers to cause a denial of service crash via a crafted ELF file, which triggers a memory allocation failure...
UBUNTU-CVE-2017-9937
In LibTIFF 4.0.8, there is a memory malloc failure in tifjbig.c. A crafted TIFF document can lead to an abort resulting in a remote denial of service attack...
PT-2017-4260 · None +5 · Libtiff +5
Name of the Vulnerable Software and Affected Versions: LibTIFF version 4.0.8 Description: The issue is related to a memory malloc failure in the tif jbig.c component, which can be exploited by a crafted TIFF document, leading to a remote denial of service attack. It is also associated with a buff...
httpd: DoS vulnerability in mod_auth_digest
It was discovered that the modauthdigest module of httpd did not properly check for memory allocation failures. A remote attacker could use this flaw to cause httpd child processes to repeatedly crash if the server used HTTP digest authentication...
BSA-2017-281
Security Advisory ID : BSA-2017-281 Component : OpenSSL Revision : 3.0: Final Thedoaproutchfunction in crypto/bio/bprint.cin OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not verify that a certain memory allocation succeeds, which allows remote attackers to cause a denial of service...
httpd: DoS vulnerability in mod_auth_digest
It was discovered that the modauthdigest module of httpd did not properly check for memory allocation failures. A remote attacker could use this flaw to cause httpd child processes to repeatedly crash if the server used HTTP digest authentication...
Amazon Linux AMI : GraphicsMagick (ALAS-2017-820)
The QuantumTransferMode function in coders/tiff.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service out-of-bounds read and application crash via a small samples per pixel value in a CMYKA TIFF file.CVE-2017-6335 The WPG format reader in GraphicsMagick 1.3.2...
Medium: GraphicsMagick
Issue Overview: The QuantumTransferMode function in coders/tiff.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service out-of-bounds read and application crash via a small samples per pixel value in a CMYKA TIFF file.CVE-2017-6335 The WPG format reader in...