SUSE CVE-2022-38143

A heap out-of-bounds write vulnerability exists in the way OpenImageIO v2.3.19.0 processes RLE encoded BMP images. A specially-crafted bmp file can write to arbitrary out of bounds memory, which can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this...

CVE-2022-38143

A heap out-of-bounds write vulnerability exists in the way OpenImageIO v2.3.19.0 processes RLE encoded BMP images. A specially-crafted bmp file can write to arbitrary out of bounds memory, which can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this...

Information Disclosure

apache arrow is vulnerable to information disclosure. The data read from Apache Parquet files with RLE null encoded data is uninitialized, potentially allowing data in memory to be unintentionally shared over the wire...

Mandriva Linux Security Advisory : imagemagick (MDVSA-2015:105)

Updated imagemagick package fixes security vulnerabilities : A buffer overflow flaw was found in the way ImageMagick handled PSD images that use RLE encoding. An attacker could create a malicious PSD image file that, when opened in ImageMagick, would cause ImageMagick to crash or, potentially,...

Amazon Linux AMI : ImageMagick (ALAS-2014-336)

A buffer overflow flaw was found in the way ImageMagick handled PSD images that use RLE encoding. An attacker could create a malicious PSD image file that, when opened in ImageMagick, would cause ImageMagick to crash or, potentially, execute arbitrary code with the privileges of the user running...

CVE-2014-1391

QT Media Foundation in Apple OS X before 10.9.5 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted movie file with RLE encoding...

Memory corruption

QT Media Foundation in Apple OS X before 10.9.5 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted movie file with RLE encoding...

CVE-2014-1391

QT Media Foundation in Apple OS X before 10.9.5 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted movie file with RLE encoding...

CVE-2014-1391

CVE-2014-1391 affects QT Media Foundation on Apple OS X prior to 10.9.5. The vulnerability is a memory corruption in handling RLE-encoded movie files, which can allow remote code execution or cause a denial of service through a crafted file. Connected sources (OpenVAS kiss) corroborate that this ...

Medium: ImageMagick

Issue Overview: A buffer overflow flaw was found in the way ImageMagick handled PSD images that use RLE encoding. An attacker could create a malicious PSD image file that, when opened in ImageMagick, would cause ImageMagick to crash or, potentially, execute arbitrary code with the privileges of t...

CVE-2012-0668

Buffer overflow in Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with RLE encoding...

Buffer overflow

Buffer overflow in Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with RLE encoding...

CVE-2012-0668

Buffer overflow in Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with RLE encoding...

CVE-2012-0668

CVE-2012-0668 is a vulnerability in Apple QuickTime where the RLE decoding path in QuickTime’s movie sample handling can overflow a buffer. The issue allows remote attackers to trigger a buffer overflow, enabling arbitrary code execution or a denial of service (application crash) by the user open...

DEBIAN-CVE-2010-4538

Buffer overflow in the sectenttecdmxda function in epan/dissectors/packet-enttec.c in Wireshark 1.4.2 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted ENTTEC DMX packet with Run Length Encoding RLE compression...

CVE-2010-0516

Heap-based buffer overflow in QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with RLE encoding, which triggers memory corruption when the length of decompressed data exceeds that o...

Heap overflow

Heap-based buffer overflow in QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with RLE encoding, which triggers memory corruption when the length of decompressed data exceeds that o...

CVE-2010-0516

CVE-2010-0516 is a heap-based buffer overflow in Apple QuickTime for Mac OS X prior to 10.6.3. A crafted .mov file using the RLE encoding can cause memory corruption when the decompressed data length exceeds the heap chunk, enabling remote code execution or a denial of service (application crash)...

CVE-2010-0516

Heap-based buffer overflow in QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with RLE encoding, which triggers memory corruption when the length of decompressed data exceeds that o...

FastStone Image Viewer 2.9/3.6 - '.bmp' Image Handling Memory Corruption

// source: https://www.securityfocus.com/bid/23312/info FastStone Image Viewer is prone to multiple denial-of-service vulnerabilities because the application fails to properly handle malformed BMP image files. Successfully exploiting these issues allows attackers to crash the affected application...