540 matches found
CVE-2016-8667
CVE-2016-8667 affects QEMU (rc4030_write in hw/dma/rc4030.c). It allows a local guest OS administrator to trigger a divide-by-zero and QEMU process crash by loading an excessively large interval timer value, causing a denial of service with partial impact on availability. The provided documents d...
CVE-2016-8669
The serialupdateparameters function in hw/char/serial.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service divide-by-zero error and QEMU process crash via vectors involving a value of divider greater than baud base...
CVE-2016-8669
The serialupdateparameters function in hw/char/serial.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service divide-by-zero error and QEMU process crash via vectors involving a value of divider greater than baud base...
Debian DLA-644-1 : libav security update
Multiple vulnerabilities have been found in libav : CVE-2015-1872 The ffmjpegdecodesof function in libavcodec/mjpegdec.c in Libav before 0.8.18 does not validate the number of components in a JPEG-LS Start Of Frame segment, which allows remote attackers to cause a denial of service out-of-bounds...
CVE-2016-3622
The fpAcc function in tifpredict.c in the tiff2rgba tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service divide-by-zero error via a crafted TIFF image...
CVE-2016-3622
The fpAcc function in tifpredict.c in the tiff2rgba tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service divide-by-zero error via a crafted TIFF image...
CVE-2016-6505
epan/dissectors/packet-packetbb.c in the PacketBB dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted packet...
CVE-2011-5326
imlib2 before 1.4.9 allows remote attackers to cause a denial of service divide-by-zero error and application crash by drawing a 2x1 ellipse...
CVE-2011-5326
CVE-2011-5326 concerns the image library imlib2 . The connected sources confirm a vulnerability in imlib2 prior to version 1.4.9 where the ellipse drawing code could trigger a division-by-zero when rendering a 2x1 ellipse, leading to a denial of service (application crash). The issue is addressed...
CVE-2016-2070
CVE-2016-2070 affects Linux kernels prior to 4.3.5. The tcp_cwnd_reduction function in net/ipv4/tcp_input.c can be triggered by crafted TCP traffic to cause a divide-by-zero DoS and system crash. According to connected advisories, upgrading to kernel 4.3.5 (as cited in ChangeLog-4.3.5) is the rem...
CVE-2016-2070
The tcpcwndreduction function in net/ipv4/tcpinput.c in the Linux kernel before 4.3.5 allows remote attackers to cause a denial of service divide-by-zero error and system crash via crafted TCP traffic...
CVE-2015-5479
The ffh263decodemba function in libavcodec/ituh263dec.c in Libav before 11.5 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a file with crafted dimensions...
CVE-2015-5479
Libav’s ff_h263_decode_mba in libavcodec/ituh263dec.c is vulnerable before 11.5, allowing remote attackers to cause a denial of service (divide-by-zero and crash) via crafted dimensions. The issue stems from insufficient validation during H.263 MBA decoding. Impact is a crash; confidentiality/int...
MGASA-2016-0140 Updated imlib2 packages fix security vulnerabilities
Updated imlib2 packages fix security vulnerabilities: An out-of-bounds read caused by an off-by-one error in imlibMergeUpdate in src/lib/updates.c in imlib2 1.4.8 and earlier CVE-2016-3993. An out-of-bounds read from colormap in the GIF loader in imlib2 1.4.8 and earlier can result in denial of...
wireshark-gtk: denial of service
CVE-2015-8742 denial of service The dissectCPMSetBindings function in epan/dissectors/packet-mswsp.c in the MS-WSP dissector in Wireshark 2.0.x before 2.0.1 does not validate the column size, which allows remote attackers to cause a denial of service memory consumption or application crash via a...
CVE-2015-8737
The mp2topen function in wiretap/mp2t.c in the MP2T file parser in Wireshark 2.0.x before 2.0.1 does not validate the bit rate, which allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted file...
CVE-2015-8737
CVE-2015-8737 affects Wireshark’s MP2T file parser (wiretap/mp2t.c) in Wireshark 2.0.x before 2.0.1. The mp2t_open function does not validate the bit rate, enabling a crafted file to trigger a divide-by-zero and crash (DoS). Mitigation: upgrade to Wireshark 2.0.1 or later where the issue is fixed.
CVE-2014-9756
The psffwrite function in fileio.c in libsndfile allows attackers to cause a denial of service divide-by-zero error and application crash via unspecified vectors related to the headindex variable...
CVE-2015-6855
hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly have unspecified other impact via certain IDE commands, as demonstrated by a WINREADNATIVEMAX command to an empty drive, which triggers a...
CVE-2015-6855
hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly have unspecified other impact via certain IDE commands, as demonstrated by a WINREADNATIVEMAX command to an empty drive, which triggers a...