21 matches found
FreeBSD : cups-filters -- buffer overflow in texttopdf size allocation (b19da422-1e02-11e5-b43d-002590263bf5)
Stefan Cornelius from Red Hat reports : A heap-based buffer overflow was discovered in the way the texttopdf utility of cups-filters processed print jobs with a specially crafted line size. An attacker being able to submit print jobs could exploit this flaw to crash texttopdf or, possibly, execut...
Denial of service - CPU loop
Description All current released versions of Samba are vulnerable to a denial of service on the nmbd NetBIOS name services daemon. A malformed packet can cause the nmbd server to loop the CPU and prevent any further NetBIOS name service. This flaw is not exploitable beyond causing the code to loo...
RedHat Update for cyrus-imapd RHSA-2011:1508-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
cyrus, perl security update
CentOS Errata and Security Advisory CESA-2011:1508 Updated cyrus-imapd packages that fix two security issues are now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System...
USN-993-1: libgdiplus vulnerability
Stefan Cornelius discovered that libgdiplus incorrectly handled certain image files. If a user or automated system were tricked into opening a crafted image file, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program...
Secunia Research: Ziproxy Two Integer Overflow Vulnerabilities
====================================================================== Secunia Research 24/05/2010 - Ziproxy Two Integer Overflow Vulnerabilities - ====================================================================== Table of Contents Affected...
Secunia Research: IrfanView PSD RLE Decompression Buffer Overflow
====================================================================== Secunia Research 12/05/2010 - IrfanView PSD RLE Decompression Buffer Overflow - ====================================================================== Table of Contents Affected...
Secunia Research: IrfanView PSD Image Parsing Sign-Extension Vulnerability
====================================================================== Secunia Research 12/05/2010 - IrfanView PSD Image Parsing Sign-Extension Vulnerability - ====================================================================== Table of Contents Affected...
Ubuntu Update for gimp vulnerabilities USN-880-1
Ubuntu Update for Linux kernel vulnerabilities USN-880-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN8801.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for gimp vulnerabilities USN-880-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...
Ubuntu: Security Advisory (USN-880-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 8.04 LTS / 8.10 / 9.04 / 9.10 : gimp vulnerabilities (USN-880-1)
Stefan Cornelius discovered that GIMP did not correctly handle certain malformed BMP files. If a user were tricked into opening a specially crafted BMP file, an attacker could execute arbitrary code with the user's privileges. CVE-2009-1570 Stefan Cornelius discovered that GIMP did not correctly...
DevIL: User-assisted execution of arbitrary code
Background Developer's Image Library DevIL is a cross-platform image library. Description Stefan Cornelius Secunia Research discovered two boundary errors within the iGetHdrHeader function in src-IL/src/ilhdr.c. Impact A remote attacker could entice a user to open a specially crafted Radiance RGB...
DSA-1717-1 devil - buffer overflow
Bulletin has no description...
[Full-disclosure] Secunia Research: EasyHDR Pro Radiance RGBE Buffer Overflow
====================================================================== Secunia Research 20/01/2009 - EasyHDR Pro Radiance RGBE Buffer Overflow - ====================================================================== Table of Contents Affected...
Secunia Research: DevIL "iGetHdrHeader()" Buffer Overflow Vulnerabilities
====================================================================== Secunia Research 13/01/2009 DevIL "iGetHdrHeader" Buffer Overflow Vulnerabilities ====================================================================== Table of Contents Affected...
Secunia Research: Streamripper Multiple Buffer Overflows
====================================================================== Secunia Research 19/11/2008 - Streamripper Multiple Buffer Overflows - ====================================================================== Table of Contents Affected...
Debian DSA-1594-1 : imlib2 - buffer overflows
Stefan Cornelius discovered two buffer overflows in Imlib's - a powerful image loading and rendering library - image loaders for PNM and XPM images, which may result in the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...
DSA-1594-1 imlib2
Bulletin has no description...
Debian DSA-1335-1 : gimp - several vulnerabilities
Several remote vulnerabilities have been discovered in Gimp, the GNU Image Manipulation Program, which might lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-4519 Sean Larsson discovered several integer...
USN-480-1: Gimp vulnerability
Stefan Cornelius discovered that Gimp could miscalculate the size of heap buffers when processing PSD images. By tricking a user into opening a specially crafted PSD file with Gimp, an attacker could exploit this to execute arbitrary code with the user's privileges...