EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1501)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The usbhidparse function in drivers/hid/usbhid/hid-core.c in the Linux kernel, before 4.13.8, allows local users to cause a denia...

EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1475)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The skbflowdissect function in net/core/flowdissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denia...

Denial Of Service (DoS)

kernel-rt is vulnerable to denial of service. A local user is able to crash the process in a divide-by-zero error and kernel oops by reading TCP stats...

CVE-2018-19628

In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could crash. This was addressed in epan/dissectors/packet-zbee-zcl-lighting.c by preventing a divide-by-zero error...

CVE-2018-18195

An issue was discovered in libgig 4.1.0. There is an FPE divide-by-zero error in DLS::Sample::Sample in DLS.cpp...

Denial Of Service (DoS)

libaudiofile.so is vulnerable to denial of service DoS attacks. An attacker can trigger the attack by sending a malicious file to the runpull function in libaudiofile/modules/BlockCodec.cpp, causing a divide-by-zero error and application crash...

CVE-2018-14394

libavformat/movenc.c in FFmpeg before 4.0.2 allows attackers to cause a denial of service application crash caused by a divide-by-zero error with a user crafted Waveform audio file...

Format string

libavformat/movenc.c in FFmpeg 3.2 and 4.0.2 allows attackers to cause a denial of service application crash caused by a divide-by-zero error with a user crafted audio file when converting to the MOV audio format...

CVE-2018-13097

A flaw was discovered in the F2FS filesystem code in fs/f2fs/super.c in the Linux kernel. An out-of-bounds read or a divide-by-zero error for an incorrect userblockcount in a corrupted f2fs image can lead to a denial of service...

CVE-2017-16890

SWFTools 0.9.2 has a divide-by-zero error in the wavconvert2mono function in lib/wav.c because the align value may be zero...

CVE-2017-16890

SWFTools 0.9.2 has a divide-by-zero error in the wavconvert2mono function in lib/wav.c because the align value may be zero...

CVE-2017-16890

SWFTools 0.9.2 is affected by CVE-2017-16890 due to a divide-by-zero in wav_convert2mono (lib/wav.c) when the align value can be zero. The issue is documented across multiple feeds; Debian lists it as removed by vendor, indicating some patch status, while other sources do not confirm a vendor pat...

CVE-2018-13100

An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3, which does not properly validate secsperzone in a corrupted f2fs image, as demonstrated by a divide-by-zero error...

CVE-2018-13100

An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3, which does not properly validate secsperzone in a corrupted f2fs image, as demonstrated by a divide-by-zero error...

CVE-2018-13097

An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3. There is an out-of-bounds read or a divide-by-zero error for an incorrect userblockcount in a corrupted f2fs image, leading to a denial of service BUG...

CVE-2018-13100

An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3, which does not properly validate secsperzone in a corrupted f2fs image, as demonstrated by a divide-by-zero error...

CVE-2018-13097

An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3. There is an out-of-bounds read or a divide-by-zero error for an incorrect userblockcount in a corrupted f2fs image, leading to a denial of service BUG...

CVE-2018-13100

CVE-2018-13100 concerns the Linux kernel, specifically fs/f2fs/super.c up to version 4.17.3, where improper validation of secs_per_zone in a corrupted f2fs image can trigger a divide-by-zero error. The connected advisories confirm the issue and reproduce conditions but do not provide a patch vers...

libjpeg-turbo denial of service vulnerability (CNVD-2018-11844)

libjpeg is a C library that contains JPEG decoding and JPEG encoding functions. libjpeg-turbo is an optimized version of libjpeg. A security vulnerability exists in the 'allowsarray' function in the jmemmgr.c file in libjpeg-turbo version 1.5.90. An attacker can exploit this vulnerability to caus...

CVE-2018-11212

An issue was discovered in libjpeg 9a and 9d. The allocsarray function in jmemmgr.c allows remote attackers to cause a denial of service divide-by-zero error via a crafted file...