Lucene search
K

6686 matches found

Fedora
Fedora
added 2018/04/06 3:3 p.m.15 views

[SECURITY] Fedora 27 Update: webkitgtk4-2.20.0-1.fc27

WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3...

1.8AI score
Exploits0
Fedora
Fedora
added 2018/04/06 2:37 p.m.15 views

[SECURITY] Fedora 26 Update: webkitgtk4-2.20.0-1.fc26

WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3...

1.8AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2018/03/27 12:0 a.m.53 views

Microsoft Skype Mobile v8.x - Emoticons DoS Vulnerability

Document Title: =============== Microsoft Skype Mobile v8.x - Emoticons DoS Vulnerability References: =========== https://www.vulnerability-lab.com/getcontent.php?id=2117 Video: https://www.youtube.com/watch?v=2vcdQb98zE0 Advisory: https://www.vulnerability-lab.com/getcontent.php?id=2116 MSRC ID:...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2018/03/19 12:0 a.m.31 views

openSUSE: Security Advisory for SDL2 (openSUSE-SU-2018:0734-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8AI score0.02677EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2018/03/18 3:9 p.m.77 views

Security update for SDL2, SDL2_image (important)

This update for SDL2 and SDL2image fixes the following issues: - CVE-2017-14441: Code execution in the ICO image rendering bsc1084282. - CVE-2017-14440: Potential code execution in the ILBM image rendering functionality bsc1084257. - CVE-2017-12122: Potential code execution in the ILBM image...

8.8AI score0.02677EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2018/03/18 12:0 a.m.2 views

PT-2018-5363 · Sdl +2 · Sdl2 Image +2

Name of the Vulnerable Software and Affected Versions: SDL2 image version 2.0.2 Description: A code execution issue exists in the ILBM image rendering functionality. A specially crafted ILBM image can cause a heap overflow, resulting in code execution. An attacker can trigger this issue by...

8.8CVSS7.4AI score0.02677EPSS
Exploits4References84
Positive Technologies
Positive Technologies
added 2018/03/18 12:0 a.m.2 views

PT-2018-5642 · Sdl +2 · Sdl2 Image +2

Name of the Vulnerable Software and Affected Versions: SDL2 image version 2.0.2 Description: A code execution issue exists in the ICO image rendering functionality. A specially crafted ICO image can cause an integer overflow, leading to a heap overflow and resulting in code execution. This can be...

8.8CVSS7.4AI score0.02677EPSS
Exploits4References70
Positive Technologies
Positive Technologies
added 2018/03/18 12:0 a.m.3 views

PT-2018-5643 · Sdl +2 · Sdl2 Image +2

Name of the Vulnerable Software and Affected Versions: SDL2 image version 2.0.2 Description: A code execution issue exists in the BMP image rendering functionality. A specially crafted BMP image can cause a stack overflow, resulting in code execution. An attacker can trigger this issue by...

8.8CVSS7.2AI score0.02677EPSS
Exploits4References79
Positive Technologies
Positive Technologies
added 2018/03/18 12:0 a.m.4 views

PT-2018-5641 · Sdl +2 · Sdl2 Image +2

Name of the Vulnerable Software and Affected Versions: SDL2 image version 2.0.2 Description: A code execution issue exists in the ILBM image rendering functionality. A specially crafted ILBM image can cause a stack overflow, resulting in code execution. An attacker can trigger this issue by...

8.8CVSS7.3AI score0.02677EPSS
Exploits4References79
Positive Technologies
Positive Technologies
added 2018/03/18 12:0 a.m.2 views

PT-2018-5650 · Sdl +2 · Sdl2 Image +2

Name of the Vulnerable Software and Affected Versions: SDL2 image version 2.0.2 Description: A double-Free issue exists in the XCF image rendering functionality. This can be triggered by a specially crafted XCF image, causing a Double-Free situation. An attacker can exploit this by displaying a...

8.8CVSS6.8AI score0.02677EPSS
Exploits4References61
Positive Technologies
Positive Technologies
added 2018/03/18 12:0 a.m.4 views

PT-2018-5649 · Sdl +2 · Sdl2 Image +2

Name of the Vulnerable Software and Affected Versions: SDL2 image version 2.0.2 Description: A code execution issue exists in the XCF image rendering functionality. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can trigger this issue by displayi...

8.8CVSS7.3AI score0.02677EPSS
Exploits4References79
Microsoft KB
Microsoft KB
added 2018/03/15 12:0 a.m.6 views

March 15, 2018—KB4090912 Update for Windows 10 Mobile (OS Build 15254.313)

March 15, 2018—KB4090912 Update for Windows 10 Mobile OS Build 15254.313 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: This build includes all the improvements from KB4088782. Addresses...

6.8AI score
Exploits0
OSV
OSV
added 2018/03/14 7:29 p.m.2 views

CVE-2018-8711

A local file inclusion issue was discovered in the WooCommerce Products Filter aka WOOF plugin before 2.2.0 for WordPress, as demonstrated by the shortcode parameter in a woofredrawwoof action. The vulnerability is due to the lack of args/input validation on renderhtml before allowing it to be...

9.8CVSS5.8AI score0.01986EPSS
Exploits0References3
Fedora
Fedora
added 2018/03/13 5:19 p.m.34 views

[SECURITY] Fedora 26 Update: freetype-2.7.1-10.fc26

The FreeType engine is a free and portable font rendering engine, developed to provide advanced font support for a variety of platforms and environments. FreeType is a library which can open and manages font files as well as efficiently load, hint and render individual glyphs. FreeType is not a...

6.5CVSS1.5AI score0.02124EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2018/03/12 6:21 p.m.6 views

chromium-browser: timing attack using svg filters

Displacement map filters being applied to cross-origin images in Blink SVG rendering in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS7.4AI score0.01523EPSS
Exploits0References5
OSV
OSV
added 2018/03/09 7:29 p.m.1 views

DEBIAN-CVE-2018-7999

In libgraphite2 in graphite2 1.3.11, a NULL pointer dereference vulnerability was found in Segment.cpp during a dumbRendering operation, which may allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .ttf file...

8.8CVSS8.6AI score0.02324EPSS
Exploits1References1
OSV
OSV
added 2018/03/09 7:29 p.m.2 views

UBUNTU-CVE-2018-7999

In libgraphite2 in graphite2 1.3.11, a NULL pointer dereference vulnerability was found in Segment.cpp during a dumbRendering operation, which may allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .ttf file...

8.8CVSS6.8AI score0.02324EPSS
Exploits1References3
Talos Blog
Talos Blog
added 2018/03/01 1:21 p.m.38 views

Vulnerability Spotlight: Simple DirectMedia Layer’s SDL2_Image

Overview Talos is disclosing several vulnerabilities identified in Simple DirectMedia Layer's SDL2Image library that could allow code execution. Simple DirectMedia Layer is a cross-platform development library designed to provide low-level access to audio, keyboard, mouse, joystick and graphics...

1.7AI score0.02677EPSS
Exploits0
Talos
Talos
added 2018/03/01 12:0 a.m.38 views

Simple DirectMedia Layer SDL2_image ILBM CMAP Parsing Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the ILBM image rendering functionality of SDL2image-2.0.2. A specially crafted ILBM image can cause a stack overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Tested...

8.8CVSS8.8AI score0.02446EPSS
Exploits0
Talos
Talos
added 2018/03/01 12:0 a.m.35 views

Simple DirectMedia Layer SDL2_image Image Palette Population Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the BMP image rendering functionality of SDL2image-2.0.2. A specially crafted BMP image can cause a stack overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Tested...

8.8CVSS8.8AI score0.02395EPSS
Exploits0
Rows per page
Query Builder