CVE-2017-6833

The runPull function in libaudiofile/modules/BlockCodec.cpp in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service divide-by-zero error and crash via a crafted file...

CVE-2016-7499

The sbrmakefmaster function in aacsbr.c in Libav 11.7 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted mp3 file...

CVE-2016-7499

CVE-2016-7499 affects Libav 11.7, specifically the sbr_make_f_master function in libavcodec/aacsbr.c . A crafted MP3 file can trigger a divide-by-zero in this routine, leading to a remote denial of service and application crash. Connected documents corroborate the same description across multiple...

Command injection

The jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted YRsiz value in a BMP image to the imginfo command...

CVE-2016-8692

The jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted YRsiz value in a BMP image to the imginfo command...

CVE-2016-8692

CVE-2016-8692 - JasPer before 1.900.4 is vulnerable to a denial of service via a crafted BMP image. The issue is a divide-by-zero error in jpc_dec_process_siz exploited when a malicious YRsiz value is processed by the imginfo command, leading to application crash. Affected component: JasPer JPEG ...

CVE-2016-8692

The jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted YRsiz value in a BMP image to the imginfo command...

Design/Logic Flaw

The bmnew function in bitmap.h in potrace before 1.13 allows remote attackers to cause a denial of service divide-by-zero error and crash via a crafted BMP image...

CVE-2016-8697

The bmnew function in bitmap.h in potrace before 1.13 allows remote attackers to cause a denial of service divide-by-zero error and crash via a crafted BMP image...

CVE-2016-8697

The bmnew function in bitmap.h in potrace before 1.13 allows remote attackers to cause a denial of service divide-by-zero error and crash via a crafted BMP image...

Debian DLA-795-1 : tiff security update

Numerous security vulnerabilities have been found through fuzzing on various tiff-related binaries. Crafted TIFF images allows remote attacks to cause denial of service or, in certain cases arbitrary code execution through divide-by-zero, out of bunds write, integer and heap overflow. CVE-2016-36...

Denial of service

The TIFFFax3fillruns function in libtiff before 4.0.6 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted Tiff image...

CVE-2016-10053

The WriteTIFFImage function in coders/tiff.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted file...

Security update for xen (important)

xen was updated to version 4.7.1 to fix 17 security issues. These security issues were fixed: - CVE-2016-9637: ioport array overflow allowing a malicious guest administrator can escalate their privilege to that of the host bsc1011652. - CVE-2016-9386: x86 null segments were not always treated as...

SUSE SLES11 Security Update : kernel (SUSE-SU-2016:2976-1)

The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. For the PowerPC64 a new 'bigmem' flavor has been added to support big Power machines. FATE319026 The following security bugs were fixed : - CVE-2016-7042: The prockeysshow function in security/keys/proc....

CVE-2016-8669

The serialupdateparameters function in hw/char/serial.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service divide-by-zero error and QEMU process crash via vectors involving a value of divider greater than baud base...

CVE-2016-8667

The rc4030write function in hw/dma/rc4030.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service divide-by-zero error and QEMU process crash via a large interval timer reload value...

Denial of service

The serialupdateparameters function in hw/char/serial.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service divide-by-zero error and QEMU process crash via vectors involving a value of divider greater than baud base...

CVE-2016-8667

CVE-2016-8667 affects QEMU (rc4030_write in hw/dma/rc4030.c). It allows a local guest OS administrator to trigger a divide-by-zero and QEMU process crash by loading an excessively large interval timer value, causing a denial of service with partial impact on availability. The provided documents d...

CVE-2016-8669

The serialupdateparameters function in hw/char/serial.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service divide-by-zero error and QEMU process crash via vectors involving a value of divider greater than baud base...