Lucene search
+L

762 matches found

RedhatCVE
RedhatCVE
added 2017/08/31 1:48 p.m.31 views

CVE-2017-12982

The bmpreadinfoheader function in bin/jp2/convertbmp.c in OpenJPEG 2.2.0 does not reject headers with a zero biBitCount, which allows remote attackers to cause a denial of service memory allocation failure in the opjimagecreate function in lib/openjp2/image.c, related to the opjalignedallocn...

5.5CVSS4.9AI score0.02858EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2017/08/30 10:29 p.m.29 views

CVE-2017-14042

A memory allocation failure was discovered in the ReadPNMImage function in coders/pnm.c in GraphicsMagick 1.3.26. The vulnerability causes a big memory allocation, which may lead to remote denial of service in the MagickRealloc function in magick/memory.c...

6.5CVSS6.9AI score0.02379EPSS
Exploits1References5
OSV
OSV
added 2017/08/30 10:29 p.m.8 views

CVE-2017-14042

A memory allocation failure was discovered in the ReadPNMImage function in coders/pnm.c in GraphicsMagick 1.3.26. The vulnerability causes a big memory allocation, which may lead to remote denial of service in the MagickRealloc function in magick/memory.c...

6.5CVSS8.4AI score
Exploits0References4
Mageia
Mageia
added 2017/08/24 7:52 a.m.17 views

Updated openjpeg2 packages fix security vulnerabilities

Patches from upstream have been added to fix two heap-based buffer overflows and a memory allocation failure...

2.7AI score
Exploits0References4
OSV
OSV
added 2017/08/24 7:52 a.m.2 views

MGASA-2017-0299 Updated openjpeg2 packages fix security vulnerabilities

Patches from upstream have been added to fix two heap-based buffer overflows and a memory allocation failure...

7.2AI score
Exploits0References5
CNVD
CNVD
added 2017/08/22 12:0 a.m.7 views

OpenJPEG Denial of Service Vulnerability (CNVD-2017-28761)

OpenJPEG is a C-based open source JPEG 2000 codec . A security vulnerability exists in the 'bmpreadinfoheader' function in bin/jp2/convertbmp.c in OpenJPEG version 2.2.0, which originates from the program receiving a packet header with a biBitCount of zero. A remote attacker could use this...

5.5CVSS6.4AI score0.02858EPSS
Exploits0References1
Prion
Prion
added 2017/08/21 7:29 a.m.16 views

Design/Logic Flaw

The bmpreadinfoheader function in bin/jp2/convertbmp.c in OpenJPEG 2.2.0 does not reject headers with a zero biBitCount, which allows remote attackers to cause a denial of service memory allocation failure in the opjimagecreate function in lib/openjp2/image.c, related to the opjalignedallocn...

4.3CVSS5.5AI score0.02858EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2017/08/21 7:29 a.m.3 views

ALPINE-CVE-2017-12982

The bmpreadinfoheader function in bin/jp2/convertbmp.c in OpenJPEG 2.2.0 does not reject headers with a zero biBitCount, which allows remote attackers to cause a denial of service memory allocation failure in the opjimagecreate function in lib/openjp2/image.c, related to the opjalignedallocn...

5.5CVSS6.8AI score0.02858EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2017/08/21 7:0 a.m.92 views

CVE-2017-12982

The bmpreadinfoheader function in bin/jp2/convertbmp.c in OpenJPEG 2.2.0 does not reject headers with a zero biBitCount, which allows remote attackers to cause a denial of service memory allocation failure in the opjimagecreate function in lib/openjp2/image.c, related to the opjalignedallocn...

5.5CVSS5.7AI score0.02858EPSS
Exploits0
CVE
CVE
added 2017/08/21 7:0 a.m.119 views

CVE-2017-12982

Summary: CVE-2017-12982 affects OpenJPEG 2.2.0. The bmp_read_info_header function in bin/jp2/convertbmp.c fails to reject headers with a zero biBitCount, which can trigger a denial of service via memory allocation failure in opj_image_create, related to opj_aligned_alloc_n in opj_malloc.c. The vu...

5.5CVSS5.4AI score0.02858EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/08/08 12:0 a.m.27 views

EulerOS 2.0 SP1 : elfutils (EulerOS-SA-2017-1142)

According to the version of the elfutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The allocateelf function in common.h in elfutils before 0.168 allows remote attackers to cause a denial of service crash via a crafted ELF file,...

5.5CVSS6.3AI score0.01573EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/08/08 12:0 a.m.23 views

EulerOS 2.0 SP2 : elfutils (EulerOS-SA-2017-1143)

According to the version of the elfutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The allocateelf function in common.h in elfutils before 0.168 allows remote attackers to cause a denial of service crash via a crafted ELF file,...

5.5CVSS6.3AI score0.01573EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2017/08/02 8:50 p.m.17 views

CVE-2016-10254

The allocateelf function in common.h in elfutils before 0.168 allows remote attackers to cause a denial of service crash via a crafted ELF file, which triggers a memory allocation failure...

5.5CVSS4.8AI score0.01573EPSS
Exploits0References1
OSV
OSV
added 2017/06/26 12:29 p.m.1 views

UBUNTU-CVE-2017-9937

In LibTIFF 4.0.8, there is a memory malloc failure in tifjbig.c. A crafted TIFF document can lead to an abort resulting in a remote denial of service attack...

6.5CVSS6.8AI score0.02846EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2017/06/26 12:0 a.m.3 views

PT-2017-4260 · None +5 · Libtiff +5

Name of the Vulnerable Software and Affected Versions: LibTIFF version 4.0.8 Description: The issue is related to a memory malloc failure in the tif jbig.c component, which can be exploited by a crafted TIFF document, leading to a remote denial of service attack. It is also associated with a buff...

9.3CVSS8AI score0.25183EPSS
Exploits13References116
RedHat Linux
RedHat Linux
added 2017/06/07 5:54 p.m.4 views

httpd: DoS vulnerability in mod_auth_digest

It was discovered that the modauthdigest module of httpd did not properly check for memory allocation failures. A remote attacker could use this flaw to cause httpd child processes to repeatedly crash if the server used HTTP digest authentication...

7.5CVSS7.2AI score0.20952EPSS
Exploits0References5
Broadcom
Broadcom
added 2017/05/17 12:0 a.m.6 views

BSA-2017-281

Security Advisory ID : BSA-2017-281 Component : OpenSSL Revision : 3.0: Final Thedoaproutchfunction in crypto/bio/bprint.cin OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not verify that a certain memory allocation succeeds, which allows remote attackers to cause a denial of service...

10CVSS9.8AI score0.53655EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2017/04/26 10:19 a.m.7 views

httpd: DoS vulnerability in mod_auth_digest

It was discovered that the modauthdigest module of httpd did not properly check for memory allocation failures. A remote attacker could use this flaw to cause httpd child processes to repeatedly crash if the server used HTTP digest authentication...

7.5CVSS7.2AI score0.20952EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2017/04/21 12:0 a.m.41 views

Amazon Linux AMI : GraphicsMagick (ALAS-2017-820)

The QuantumTransferMode function in coders/tiff.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service out-of-bounds read and application crash via a small samples per pixel value in a CMYKA TIFF file.CVE-2017-6335 The WPG format reader in GraphicsMagick 1.3.2...

9.8CVSS7.7AI score0.03905EPSS
Exploits0References9
Amazon
Amazon
added 2017/04/20 12:0 a.m.45 views

Medium: GraphicsMagick

Issue Overview: The QuantumTransferMode function in coders/tiff.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service out-of-bounds read and application crash via a small samples per pixel value in a CMYKA TIFF file.CVE-2017-6335 The WPG format reader in...

9.8CVSS8.1AI score0.03905EPSS
Exploits0
Rows per page
Query Builder