Lucene search
K

254 matches found

OSV
OSV
added 2020/06/03 7:15 p.m.6 views

ALPINE-CVE-2020-13790

libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

8.1CVSS7.2AI score0.03205EPSS
Exploits1References1
OSV
OSV
added 2020/06/03 7:15 p.m.2 views

DEBIAN-CVE-2020-13790

libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

8.1CVSS6.8AI score0.03205EPSS
Exploits1References1
Prion
Prion
added 2020/06/03 7:15 p.m.25 views

Heap overflow

libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

5.8CVSS7.8AI score0.03205EPSS
Exploits1References9Affected Software2
UbuntuCve
UbuntuCve
added 2020/06/03 7:15 p.m.28 views

CVE-2020-13790

libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

8.1CVSS6.9AI score0.03205EPSS
Exploits1References2
OSV
OSV
added 2020/06/03 7:15 p.m.5 views

UBUNTU-CVE-2020-13790

libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

8.1CVSS7AI score0.03205EPSS
Exploits1References3
Cvelist
Cvelist
added 2020/06/03 6:56 p.m.24 views

CVE-2020-13790

libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

8AI score0.03205EPSS
Exploits1References9
Debian CVE
Debian CVE
added 2020/06/03 6:56 p.m.28 views

CVE-2020-13790

libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

8.1CVSS7.3AI score0.03205EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2020/06/03 6:56 p.m.37 views

CVE-2020-13790

libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

8.1CVSS8.1AI score0.03205EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2020/06/03 12:0 a.m.6 views

PT-2020-5652 · Libjpeg Turbo +8 · Libjpeg-Turbo +8

Name of the Vulnerable Software and Affected Versions: libjpeg-turbo versions 2.0.4 and earlier mozjpeg version 4.0.0 Description: The issue is related to a heap-based buffer over-read in the get rgb row function in rdppm.c via a malformed PPM input file. This can allow a remote attacker to acces...

8.8CVSS6.7AI score0.03445EPSS
Exploits6References83
FreeBSD
FreeBSD
added 2020/06/03 12:0 a.m.28 views

mozjpeg -- heap-based buffer over-read in get_rgb_row() in rdppm.c via a malformed PPM input file

NIST reports: Heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

8.1CVSS3.1AI score0.03205EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2020/06/03 12:0 a.m.30 views

libjpeg-turbo -- Issue in the PPM reader causing a buffer overrun in cjpeg, TJBench, or the tjLoadImage() function.

libjpeg-turbo releases reports: This release fixes the following security issue: Heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

8.1CVSS3.1AI score0.03205EPSS
Exploits1References1
Rockylinux
Rockylinux
added 2020/04/28 9:2 a.m.26 views

qt5 security, bug fix, and enhancement update

An update is available for qt5-qtwayland, qt5-qtdoc, qt5-qtserialport, qt5-qtxmlpatterns, qt5-qtlocation, qt5-qttranslations, qt5-qtgraphicaleffects, qt5-qtscript, qt5-qtdeclarative, qt5-qtserialbus, qt5-qtimageformats, qt5, qt5-qtx11extras, qt5-qtquickcontrols2, qt5-qtquickcontrols,...

6.5CVSS0.1AI score0.02178EPSS
Exploits1
OSV
OSV
added 2020/04/15 2:15 p.m.3 views

CVE-2020-2706

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering component: Project Manager. Supported versions that are affected are 16.2.0.0 - 16.2.19.3, 17.12.0.0 - 17.12.17.0, 18.8.0.0 - 18.8.18.0, 19.12.1.0 - 19.12.3.0 and 20.1.0.0 -...

5.4CVSS6.4AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2020/04/01 2:29 a.m.35 views

CVE-2018-19872

An issue was discovered in Qt 5.11. A malformed PPM image causes a division by zero and a crash in qppmhandler.cpp...

6.2CVSS2.1AI score0.01384EPSS
Exploits1References2
Veracode
Veracode
added 2020/04/01 12:38 a.m.27 views

Denial Of Service (DoS)

qt is vulnerable to denial of service DoS. The vulnerability exists as a malformed PPM image can cause a divide by zero and crash in qppmhandler.cpp...

5.5CVSS2.4AI score0.01384EPSS
Exploits1References15Affected Software27
Tenable Nessus
Tenable Nessus
added 2020/02/12 12:0 a.m.42 views

Ubuntu 16.04 LTS / 18.04 LTS : Qt vulnerabilities (USN-4275-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4275-1 advisory. It was discovered that Qt incorrectly handled certain PPM images. If a user or automated system were tricked into opening a specially crafted...

7.3CVSS7.1AI score0.0205EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2020/02/11 12:0 a.m.54 views

Ubuntu: Security Advisory (USN-4275-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3CVSS6.5AI score0.0205EPSS
Exploits2References2
Ubuntu
Ubuntu
added 2020/02/10 1:34 p.m.128 views

USN-4275-1: Qt vulnerabilities

It was discovered that Qt incorrectly handled certain PPM images. If a user or automated system were tricked into opening a specially crafted PPM file, a remote attacker could cause Qt to crash, resulting in a denial of service. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS...

7.3CVSS6.8AI score0.0205EPSS
Exploits2
OSV
OSV
added 2020/02/10 1:34 p.m.6 views

USN-4275-1 qtbase-opensource-src vulnerabilities

It was discovered that Qt incorrectly handled certain PPM images. If a user or automated system were tricked into opening a specially crafted PPM file, a remote attacker could cause Qt to crash, resulting in a denial of service. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS...

7.3CVSS6.7AI score0.0205EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for qt (EulerOS-SA-2019-1833)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.2AI score0.01384EPSS
Exploits1References2
Rows per page
Query Builder