ImageMagick 'BenchmarkOpenCLDevices' Function Denial of Service Vulnerability

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A security vulnerability exists in the 'BenchmarkOpenCLDevices' function in the MagickCore/opencl.c file in ImageMagic...

Squid Software Foundation Squid HTTP Caching Proxy Denial of Service Vulnerability (CNVD-2018-05766 )

Squid Software Foundation Squid HTTP Caching Proxy is an open source HTTP caching proxy software . A security vulnerability exists in the handling of HTTP Response X-Forwarded-For packet headers in versions of Squid Software Foundation Squid HTTP Caching Proxy prior to 4.0.23. An attacker could...

ClamAV Null Pointer Dereference Vulnerability

ClamAV AntiVirus software is a free and open source antivirus software developed by ClamAV team. The software is used to detect Trojans, viruses, malware and other malicious threats. A security vulnerability exists in ClamAV AntiVirus software that stems from the program's use of an incorrect inp...

ImageMagick MagickCore Component Denial of Service Vulnerability

ImageMagick is a set of open source image processing software from the U.S. company ImageMagick Studio. The software can read, convert, write pictures in a variety of formats.MagickCore component is one of the core components. A denial of service vulnerability exists in the MagickCore component o...

K7 Antivirus K7Sentry.sys Denial of Service Vulnerability (CNVD-2018-01082)

K7 Antivirus is a suite of anti-virus software from the Indian company K7 Computing.K7Sentry.sys is one of the kernel-mode drivers used in K7 Computing's security products. A security vulnerability exists in K7 Antivirus version 15.1.0309 in K7Sentry.sys version 15.1.0.59. An attacker can exploit...

Tor Denial of Service Vulnerability (CNVD-2017-38231)

Tor The Onion Router is a second-generation implementation of onion routing, primarily used for anonymous access to the Internet. Tor suffers from a denial of service vulnerability. A remote attacker could exploit this vulnerability to cause a denial of service null pointer backreference and...

Linux kernel denial of service vulnerability (CNVD-2017-36476)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A denial of service vulnerability exists in the 'rngapireset' function of the crypto/rng.c file in versions of Linux kernel prior to 4.2. An attacker exploits this...

libbpg VideoLAN x265 Denial of Service Vulnerability

libbpg is a new image format library. videoLAN x265 is one of the H.265 video format libraries. A denial of service vulnerability exists in the 'CUData::initialize' function in the common/cudata.cpp file of VideoLAN x265 in libbpg version 0.9.7 and other products, which stems from the program...

tcmu-runner null pointer backreference vulnerability

tcmu-runner is a daemon for handling user space for LIO TCM user backend storage. A security vulnerability exists in the 'onunregisterhandler' function in tcmu-runner versions 1.0.5 through 1.2.0. An attacker can exploit the vulnerability to cause a denial of service null pointer backreference...

Symantec Endpoint Encryption Denial of Service Vulnerability (CNVD-2017-36540)

Symantec Endpoint Encryption SEE is a suite of software from Symantec Corporation that provides advanced encryption and management capabilities for desktops, laptops, and removable storage devices. A security vulnerability exists in Symantec Endpoint Encryption in versions prior to SEE 11.1.3MP1...

mkvalidator 'Node_GetData' Function Denial of Service Vulnerability

mkvalidator is a command line tool from the Matroska team for verifying that Matroska and WebM files are canonical. A security vulnerability exists in the 'NodeGetData' function in the corec/corec/node/node.c file in mkvalidator version 0.5.1. A remote attacker can exploit this vulnerability to...

Cesanta Mongoose MQTT Denial of Service Vulnerability

Cesanta Mongoose is a suite of embedded servers from Cesanta, Ireland. A denial of service vulnerability exists in the MQTT packet parsing feature in Cesanta Mongoose version 6.8. An attacker can exploit this vulnerability to cause a denial of service null pointer backreference and server crash b...

Red Hat GlusterFS Denial of Service Vulnerability (CNVD-2017-32891)

Red Hat GlusterFS is an open source distributed file system from Red Hat. The system is a combination of different storage servers , these servers by the Ethernet or unlimited bandwidth technology Infiniband and remote direct memory access RDMA convergence , and ultimately the formation of a larg...

Google Android Denial of Service Vulnerability (CNVD-2017-35525)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. A security vulnerability exists in the cmds/servicemanager/servicemanager.c file in Google Android. An attacker can exploit this vulnerability to cause a denial of service null...

GNU Libextractor Null Pointer Backreference Vulnerability

GNU Libextractor is a set of libraries developed by the GNU Project for extracting metadata from files. A security vulnerability exists in the 'EXTRACTORnsfextractmethod' function in the plugins/nsfextractor.c file in GNU Libextractor version 1.4. An attacker can exploit this vulnerability to cau...

Linux kernel KEYS subsystem denial of service vulnerability (CNVD-2017-32223)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the U.S. KEYS is one of the subsystems that returns all keys that match a pattern. A security vulnerability exists in the KEYS subsystem in Linux kernel 4.13.7 and earlier. A local attacker can...

Google Android Qualcomm Camera Driver Denial of Service Vulnerability

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. A denial of service vulnerability exists in the Google Android Qualcomm camera driver, which can be exploited by an attacker to cause a denial of service null pointer...

ImageMagick 'PostscriptDelegateMessage' Function Denial of Service Vulnerability

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A security vulnerability exists in the 'PostscriptDelegateMessage' function in the coders/ps.c file in ImageMagick...

MP3Gain mpglibDBL Denial of Service Vulnerability

MP3Gain is a MP3 file volume adjustment application. mpglibDBL is one of the MPEG file decoders. A security vulnerability exists in the syncbuffer of the interface.c file of mpglibDBL in MP3Gain. A remote attacker can exploit this vulnerability to cause a denial of service null pointer...

GraphicsMagick coders/pnm.c file denial of service vulnerability

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A security vulnerability exists in ReadPNMImage in the coders/pnm.c file in GraphicsMagick version 1.3.26. An attacker can exploit this vulnerability to caus...