Design/Logic Flaw

The wavwritehdr function in wav.c in Sound eXchange SoX 14.4.2 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted snd file, during conversion to a wav file...

CVE-2017-11359

CVE-2017-11359 affects SoX 14.4.2: the wavwritehdr function in wav.c can be triggered by a crafted snd file to cause a denial of service (divide-by-zero error and application crash) during WAV conversion. Public advisories note fixes/updates (e.g., Debian 14.4.1-5+deb8u3; DLA 1705-1; Alpine pages...

CVE-2017-11546

CVE-2017-11546 affects TiMidity++ 2.14.0. The vulnerability is in the insert_note_steps function (readmidi.c) and Allows a crafted MIDI file to trigger a divide-by-zero and crash the application (potentially relevant when running with --background). Connected advisories confirm a security patch; ...

CVE-2017-11332

The startread function in wav.c in Sound eXchange SoX 14.4.2 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted wav file...

CVE-2017-11332

CVE-2017-11332 affects SoX (Sound eXchange), specifically the startread function in wav.c of version 14.4.2. A crafted WAV file with certain conditions can cause a divide-by-zero error, leading to a denial of service (application crash). This vulnerability is documented in Debian and other adviso...

CVE-2017-11332

The startread function in wav.c in Sound eXchange SoX 14.4.2 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted wav file...

Fedora 26 : ghostscript (2017-a606d224a5)

Security fixes release for these CVEs : - CVE-2016-10217 use-after-free and application crash - CVE-2016-10218 NULL pointer dereference and application crash - CVE-2016-10219 divide-by-zero error and application crash - CVE-2016-10220 NULL pointer dereference and application crash - CVE-2017-5951...

Denial of service

imagew-cmd.c:854:45 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service divide-by-zero error via a crafted image, related to imagew-api.c...

CVE-2017-9201

imagew-cmd.c:850:46 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service divide-by-zero error via a crafted image, related to imagew-api.c...

CVE-2017-9202

The CVE-2017-9202 issue affects ImageWorsener 1.3.1: imagew-cmd.c:854:45 in libimageworsener.a, related to imagew-api.c. A crafted image can trigger a divide-by-zero error, allowing remote denial of service. Documents confirm the vulnerable file and location, the affected version, and the DoS out...

CVE-2017-8842

The bufRead::get function in libzpaq/libzpaq.h in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted archive...

CVE-2017-8842

CVE-2017-8842 affects lrzip (Long Range ZIP), specifically the liblrzip/libzpaq.h path in lrzip 0.631. The root cause is the bufRead::get() function, which can be triggered by a crafted archive to cause a denial of service via a divide-by-zero error, leading to an application crash. Exploitation ...

CVE-2017-8842

The bufRead::get function in libzpaq/libzpaq.h in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted archive...

Fedora 25 : ghostscript (2017-c85c0e5637)

Security fixes release for these CVEs : - CVE-2016-10217 use-after-free and application crash - CVE-2016-10218 NULL pointer dereference and application crash - CVE-2016-10219 divide-by-zero error and application crash - CVE-2016-10220 NULL pointer dereference and application crash - CVE-2017-5951...

CVE-2016-7530

The quantum handling code in ImageMagick allows remote attackers to cause a denial of service divide-by-zero error or out-of-bounds write via a crafted file...

Design/Logic Flaw

The iwgifreadimage function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted file...

CVE-2017-7962

The iwgifreadimage function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted file...

SUSE SLED12 / SLES12 Security Update : tiff (SUSE-SU-2017:1044-1)

This update for tiff fixes the following issues: Security issues fixed : - CVE-2016-10272: LibTIFF 4.0.7 allows remote attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via a crafted TIFF image, related to 'WRITE of size 2048' and...

CVE-2016-10219

The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted file...

CVE-2017-7595

The JPEGSetupEncode function in tiffjpeg.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted image...