55 matches found
The vulnerability of the AcquireResampleFilterThreadSet function in the magick/resample-private.h component of the console-based image editing tool ImageMagick, related to the assignment of a null pointer, allows a malicious actor to trigger a service failure.
The vulnerability of the AcquireResampleFilterThreadSet function in the magick/resample-private.h component of the ImageMagick console graphics editor is related to the use of a null pointer. Exploiting this vulnerability allows an attacker to cause a service failure...
UBUNTU-CVE-2021-20246
A flaw was found in ImageMagick in MagickCore/resample.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability...
ImageMagick Studio ImageMagick 数字错误漏洞
Imagemagick Studio ImageMagick is a suite of open source image processing software from the American company ImageMagick Studio. The software can read, convert or write images in a variety of formats. A de-zero vulnerability exists in MagickCore/resample.c in versions of ImageMagick prior to...
Denial Of Service (DoS)
libsndfile is vulnerable to denial of service DoS. The vulnerability exists as an error in the flacbuffercopy function flac.c can be exploited to cause a segmentation violation with read memory access via a specially crafted FLAC file during a resample attempt, a similar issue to CVE-2017-7585...
Denial Of Service (DoS)
libsndfile is vulnerable to denial of service DoS. The vulnerability exists as an error in the flacbuffercopy function flac.c can be exploited to cause a segmentation violation with write memory access via a specially crafted FLAC file during a resample attempt, a similar issue to CVE-2017-7585...
The vulnerability of the ImagingResampleHorizontal function (libImaging/Resample.c) in the Pillow image processing library allows an attacker to compromise the confidentiality, integrity, and accessibility of data.
The vulnerability of the ImagingResampleHorizontal function libImaging/Resample.c in the Pillow image processing library is due to a numerical overflow issue. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of data by setting t...
DEBIAN-CVE-2017-14739
The AcquireResampleFilterThreadSet function in magick/resample-private.h in ImageMagick 7.0.7-4 mishandles failed memory allocation, which allows remote attackers to cause a denial of service NULL Pointer Dereference in DistortImage in MagickCore/distort.c, and application crash via unspecified...
ImageMagick 'AcquireResampleFilterThreadSet' Function Denial of Service Vulnerability
ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A security vulnerability exists in the 'AcquireResampleFilterThreadSet' function in the magick/resample-private.h file...
TiMidity++ 'resample_gauss' Function Denial of Service Vulnerability
TiMidity++ is an open source audio file converter and player that can convert MIDI files to other formats. A security vulnerability exists in the 'resamplegauss' function of the resample.c file in TiMidity++ version 2.14.0. A remote attacker can exploit this vulnerability to cause a denial of...
DEBIAN-CVE-2017-11547
The resamplegauss function in resample.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted mid file. NOTE: a crash might be relevant when using the --background option. NOTE: the TiMidity++ README.alsaseq documentation suggests a...
Heap overflow
The resamplegauss function in resample.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted mid file. NOTE: a crash might be relevant when using the --background option. NOTE: the TiMidity++ README.alsaseq documentation suggests a...
CVE-2017-11547
CVE-2017-11547 affects TiMidity++ 2.14.0, where the resample_gauss function in resample.c can cause a heap-based buffer over-read via a crafted MIDI file, leading to denial of service (potential crash). The initial description notes a possible crash with --background; exploitation details/patch s...
LAME Denial of Service Vulnerability (CNVD-2017-20146)
LAME is LAME team developed a set of open source MP3 audio compression software . A security vulnerability exists in the 'fillbufferresample' function in the libmp3lame/util.c file in LAME version 3.99.5. A remote attacker can exploit this vulnerability to cause a denial of service heap buffer...
LAME fill_buffer_resample function denial of service vulnerability
LAME is an open source MP3 audio compression software. A security vulnerability in the LAME libmp3lame.a/util.c/fillbufferresample function allows remote attackers to exploit the vulnerability by submitting a special file that induces the user to parse it, which can crash the application...
LAME fill_buffer_resample function heap buffer overflow vulnerability
LAME is an open source MP3 audio compression software. A heap buffer overflow vulnerability exists in the LAME libmp3lame.a/util.c/fillbufferresample function, which allows remote attackers to exploit the vulnerability by submitting a special file and tricking the user into parsing it, which can...
ALPINE-CVE-2015-9100
The fillbufferresample function in util.c in libmp3lame.a in LAME 3.99.5 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted audio file...
CVE-2015-9101
CVE-2015-9101 affects LAME vulnerable in fill_buffer_resample (libmp3lame/util.c); a crafted audio file can trigger a heap-based buffer over-read and application crash (DoS). Patches exist in newer LAME releases (e.g., 3.100 per openSUSE/SUSE advisories); no exploitation details are provided in t...
PT-2017-7548 · Lame +3 · Lame +3
Name of the Vulnerable Software and Affected Versions: LAME versions 3.98 through 3.99.5 Description: The issue allows remote attackers to cause a denial of service, resulting in a heap-based buffer over-read and application crash, via a crafted audio file. This is due to a problem in the fill...
CVE-2017-7741
In libsndfile before 1.0.28, an error in the "flacbuffercopy" function flac.c can be exploited to cause a segmentation violation with write memory access via a specially crafted FLAC file during a resample attempt, a similar issue to CVE-2017-7585...
DEBIAN-CVE-2017-7742
In libsndfile before 1.0.28, an error in the "flacbuffercopy" function flac.c can be exploited to cause a segmentation violation with read memory access via a specially crafted FLAC file during a resample attempt, a similar issue to CVE-2017-7585...