Lucene search
K

55 matches found

BDU FSTEC
BDU FSTEC
added 2021/07/02 12:0 a.m.4 views

The vulnerability of the AcquireResampleFilterThreadSet function in the magick/resample-private.h component of the console-based image editing tool ImageMagick, related to the assignment of a null pointer, allows a malicious actor to trigger a service failure.

The vulnerability of the AcquireResampleFilterThreadSet function in the magick/resample-private.h component of the ImageMagick console graphics editor is related to the use of a null pointer. Exploiting this vulnerability allows an attacker to cause a service failure...

7.5CVSS7.4AI score0.03013EPSS
Exploits0References12Affected Software3
OSV
OSV
added 2021/03/09 7:15 p.m.2 views

UBUNTU-CVE-2021-20246

A flaw was found in ImageMagick in MagickCore/resample.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability...

5.5CVSS6.7AI score0.01228EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/02/25 12:0 a.m.5 views

ImageMagick Studio ImageMagick 数字错误漏洞

Imagemagick Studio ImageMagick is a suite of open source image processing software from the American company ImageMagick Studio. The software can read, convert or write images in a variety of formats. A de-zero vulnerability exists in MagickCore/resample.c in versions of ImageMagick prior to...

7.1CVSS6.8AI score0.01228EPSS
Exploits0References14
Veracode
Veracode
added 2020/05/10 11:23 p.m.32 views

Denial Of Service (DoS)

libsndfile is vulnerable to denial of service DoS. The vulnerability exists as an error in the flacbuffercopy function flac.c can be exploited to cause a segmentation violation with read memory access via a specially crafted FLAC file during a resample attempt, a similar issue to CVE-2017-7585...

5.5CVSS3.3AI score0.01388EPSS
Exploits1References3Affected Software1
Veracode
Veracode
added 2020/05/10 11:23 p.m.31 views

Denial Of Service (DoS)

libsndfile is vulnerable to denial of service DoS. The vulnerability exists as an error in the flacbuffercopy function flac.c can be exploited to cause a segmentation violation with write memory access via a specially crafted FLAC file during a resample attempt, a similar issue to CVE-2017-7585...

5.5CVSS3.3AI score0.01294EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/11/23 12:0 a.m.6 views

The vulnerability of the ImagingResampleHorizontal function (libImaging/Resample.c) in the Pillow image processing library allows an attacker to compromise the confidentiality, integrity, and accessibility of data.

The vulnerability of the ImagingResampleHorizontal function libImaging/Resample.c in the Pillow image processing library is due to a numerical overflow issue. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of data by setting t...

10CVSS7.9AI score0.07871EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2017/09/26 2:29 a.m.0 views

DEBIAN-CVE-2017-14739

The AcquireResampleFilterThreadSet function in magick/resample-private.h in ImageMagick 7.0.7-4 mishandles failed memory allocation, which allows remote attackers to cause a denial of service NULL Pointer Dereference in DistortImage in MagickCore/distort.c, and application crash via unspecified...

7.5CVSS6.7AI score0.03013EPSS
Exploits0References1
CNVD
CNVD
added 2017/09/26 12:0 a.m.3 views

ImageMagick 'AcquireResampleFilterThreadSet' Function Denial of Service Vulnerability

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A security vulnerability exists in the 'AcquireResampleFilterThreadSet' function in the magick/resample-private.h file...

7.5CVSS8AI score0.03013EPSS
Exploits0References1
CNVD
CNVD
added 2017/08/03 12:0 a.m.2 views

TiMidity++ 'resample_gauss' Function Denial of Service Vulnerability

TiMidity++ is an open source audio file converter and player that can convert MIDI files to other formats. A security vulnerability exists in the 'resamplegauss' function of the resample.c file in TiMidity++ version 2.14.0. A remote attacker can exploit this vulnerability to cause a denial of...

5.5CVSS7AI score0.01097EPSS
Exploits0References1
OSV
OSV
added 2017/07/31 1:29 p.m.1 views

DEBIAN-CVE-2017-11547

The resamplegauss function in resample.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted mid file. NOTE: a crash might be relevant when using the --background option. NOTE: the TiMidity++ README.alsaseq documentation suggests a...

5.5CVSS5.2AI score0.01097EPSS
Exploits0References1
Prion
Prion
added 2017/07/31 1:29 p.m.19 views

Heap overflow

The resamplegauss function in resample.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted mid file. NOTE: a crash might be relevant when using the --background option. NOTE: the TiMidity++ README.alsaseq documentation suggests a...

4.3CVSS5.3AI score0.01097EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2017/07/31 1:0 p.m.66 views

CVE-2017-11547

CVE-2017-11547 affects TiMidity++ 2.14.0, where the resample_gauss function in resample.c can cause a heap-based buffer over-read via a crafted MIDI file, leading to denial of service (potential crash). The initial description notes a possible crash with --background; exploitation details/patch s...

5.5CVSS5.2AI score0.01097EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2017/07/28 12:0 a.m.6 views

LAME Denial of Service Vulnerability (CNVD-2017-20146)

LAME is LAME team developed a set of open source MP3 audio compression software . A security vulnerability exists in the 'fillbufferresample' function in the libmp3lame/util.c file in LAME version 3.99.5. A remote attacker can exploit this vulnerability to cause a denial of service heap buffer...

6.9AI score
Exploits3References1
CNVD
CNVD
added 2017/06/27 12:0 a.m.10 views

LAME fill_buffer_resample function denial of service vulnerability

LAME is an open source MP3 audio compression software. A security vulnerability in the LAME libmp3lame.a/util.c/fillbufferresample function allows remote attackers to exploit the vulnerability by submitting a special file that induces the user to parse it, which can crash the application...

5.5CVSS6.9AI score0.01441EPSS
Exploits0References1
CNVD
CNVD
added 2017/06/26 12:0 a.m.4 views

LAME fill_buffer_resample function heap buffer overflow vulnerability

LAME is an open source MP3 audio compression software. A heap buffer overflow vulnerability exists in the LAME libmp3lame.a/util.c/fillbufferresample function, which allows remote attackers to exploit the vulnerability by submitting a special file and tricking the user into parsing it, which can...

5.5CVSS7.4AI score0.01885EPSS
Exploits1References1
OSV
OSV
added 2017/06/25 7:29 p.m.3 views

ALPINE-CVE-2015-9100

The fillbufferresample function in util.c in libmp3lame.a in LAME 3.99.5 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted audio file...

5.5CVSS6.7AI score0.01441EPSS
Exploits0References1
CVE
CVE
added 2017/06/25 7:0 p.m.86 views

CVE-2015-9101

CVE-2015-9101 affects LAME vulnerable in fill_buffer_resample (libmp3lame/util.c); a crafted audio file can trigger a heap-based buffer over-read and application crash (DoS). Patches exist in newer LAME releases (e.g., 3.100 per openSUSE/SUSE advisories); no exploitation details are provided in t...

5.5CVSS5.2AI score0.01885EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2017/06/25 12:0 a.m.5 views

PT-2017-7548 · Lame +3 · Lame +3

Name of the Vulnerable Software and Affected Versions: LAME versions 3.98 through 3.99.5 Description: The issue allows remote attackers to cause a denial of service, resulting in a heap-based buffer over-read and application crash, via a crafted audio file. This is due to a problem in the fill...

9.8CVSS6.4AI score0.0979EPSS
Exploits12References93
RedhatCVE
RedhatCVE
added 2017/04/13 11:50 a.m.27 views

CVE-2017-7741

In libsndfile before 1.0.28, an error in the "flacbuffercopy" function flac.c can be exploited to cause a segmentation violation with write memory access via a specially crafted FLAC file during a resample attempt, a similar issue to CVE-2017-7585...

5.5CVSS3.8AI score0.01294EPSS
Exploits1References1
OSV
OSV
added 2017/04/12 6:59 p.m.2 views

DEBIAN-CVE-2017-7742

In libsndfile before 1.0.28, an error in the "flacbuffercopy" function flac.c can be exploited to cause a segmentation violation with read memory access via a specially crafted FLAC file during a resample attempt, a similar issue to CVE-2017-7585...

5.5CVSS6.8AI score0.01388EPSS
Exploits1References1
Rows per page
Query Builder