131 matches found
CVE-2016-9820
libavcodec/mpegvideomotion.c in libav 11.8 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
CVE-2016-9819
libavcodec/mpegvideo.c in libav 11.8 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
CVE-2016-9820
libavcodec/mpegvideomotion.c in libav 11.8 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
CVE-2016-9825
libswscale/utils.c in libav 11.8 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
CVE-2017-5500
libjasper/jpc/jpcdec.c in JasPer 1.900.17 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
CVE-2017-5498
libjasper/include/jasper/jasmath.h in JasPer 1.900.17 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...
Design/Logic Flaw
B.A.S C2Box before 4.0.0 r19171 relies on client-side validation, which allows remote attackers to "corrupt the business logic" via a negative value in an overdraft...
OpenSSL 1.0.1 < 1.0.1o / 1.0.2 < 1.0.2c ASN.1 Encoder Negative Zero Value Handling RCE
Binary data 9389.prm...
CVE-2016-0835
decoder/impeg2ddechdr.c in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted media file that triggers a certain negative value, aka internal bug 26070014...
C2Box 4.0.0(r19171) Validation Bypass
Title: Validation Bypass in C2Box application allows user to input negative value Author: Harish Ramadoss Vendor: boxautomationB.A.S Product: C2Box Version: All versions below 4.0.0r19171 Tested Version: Version 4.0.0r19171 Severity: Medium CVE Reference: 2015-4626 About the Product: B.A.S C2Box...
DEBIAN-CVE-2013-4531
Buffer overflow in target-arm/machine.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a negative value in cpregvmstatearraylen in a savevm image...
Out-of-bounds
The bdfparseglyphs function in FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service out-of-bounds write and crash via vectors related to BDF fonts and an ENCODING field with a negative value...
CVE-2012-0849
Integer overflow in the ffj2kdwtinit function in libavcodec/j2kdwt.c in FFmpeg before 0.9.1 allows remote attackers to cause a denial of service segmentation fault and application crash via a crafted JPEG2000 image that triggers an incorrect check for a negative value...
Code injection
The Fivestar module 6.x-1.x before 6.x-1.20 for Drupal does not properly validate voting data, which allows remote attackers to manipulate voting averages via a negative value in the vote parameter...
CVE-2012-0815
The headerVerifyInfo function in lib/header.c in RPM before 4.9.1.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a negative value in a region offset of a package header, which is not properly handled in a numeric range comparison...
CVE-2011-3601
Buffer overflow in the processra function in the router advertisement daemon radvd before 1.8.2 allows remote attackers to execute arbitrary code or cause a denial of service crash via a negative value in a labellen value...
kernel: av7110 negative array offset
The dvbcaioctl function in drivers/media/dvb/ttpci/av7110ca.c in the Linux kernel before 2.6.38-rc2 does not check the sign of a certain integer field, which allows local users to cause a denial of service memory corruption or possibly have unspecified other impact via a negative value...
kernel: av7110 negative array offset
The dvbcaioctl function in drivers/media/dvb/ttpci/av7110ca.c in the Linux kernel before 2.6.38-rc2 does not check the sign of a certain integer field, which allows local users to cause a denial of service memory corruption or possibly have unspecified other impact via a negative value...
kernel: av7110 negative array offset
The dvbcaioctl function in drivers/media/dvb/ttpci/av7110ca.c in the Linux kernel before 2.6.38-rc2 does not check the sign of a certain integer field, which allows local users to cause a denial of service memory corruption or possibly have unspecified other impact via a negative value...
kernel: av7110 negative array offset
The dvbcaioctl function in drivers/media/dvb/ttpci/av7110ca.c in the Linux kernel before 2.6.38-rc2 does not check the sign of a certain integer field, which allows local users to cause a denial of service memory corruption or possibly have unspecified other impact via a negative value...