73 matches found
Low: gnuplot
Issue Overview: A Divide by Zero vulnerability exists in gnuplot 5.4 in the boundary3d function in graph3d.c, which could cause a Arithmetic exception and application crash. CVE-2021-44917 Affected Packages: gnuplot Issue Correction: Run dnf update gnuplot --releasever 2023.0.20230607 or dnf upda...
CVE-2022-47525
Fox-IT DataDiode (aka Fox DataDiode) 3.4.3 is affected by a Divide-by-Zero vulnerability in the packet parser. A remote attacker could cause a denial-of-service without user interaction. Exploitation details are not provided in the supplied documents beyond the remote, unauthenticated nature of t...
CVE-2022-47525
Fox-IT DataDiode aka Fox DataDiode 3.4.3 suffers from a Divide-by-Zero vulnerability in the packet parser. A remote attacker could leverage this vulnerability to cause a denial-of-service. Exploitation of this issue does not require user interaction...
CVE-2023-2662 Divide-by-zero in Xpdf 4.04 due to bad color space object
In Xpdf 4.04 and earlier, a bad color space object in the input PDF file can cause a divide-by-zero...
SUSE CVE-2008-5907
The pngcheckkeyword function in pngwutil.c in libpng before 1.0.42, and 1.2.x before 1.2.34, might allow context-dependent attackers to set the value of an arbitrary memory location to zero via vectors involving creation of crafted PNG files with keywords, related to an implicit cast of the '\0'...
Web Based Quiz System 安全漏洞
Web Based Quiz System is a web based quiz system for janobe individual developers. A vulnerability exists in Web Based Quiz System v1.0, which can be exploited by attackers to obtain a user's password via brute-force cracking...
SUSE SLES15 Security Update : hdf5, suse-hpc (SUSE-SU-2022:1911-1)
The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1911-1 advisory. Security issues fixed: - CVE-2020-10811: Fixed heap-based buffer over-read in the function H5Olayoutdecode located in H5Olayout.c bsc1167405. -...
SUSE SLES15 Security Update : hdf5 (SUSE-SU-2022:1903-1)
The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1903-1 advisory. Security issues fixed: - CVE-2020-10811: Fixed heap-based buffer over-read in the function H5Olayoutdecode located in H5Olayout.c bsc1167405. -...
EulerOS 2.0 SP5 : speex (EulerOS-SA-2022-1552)
According to the versions of the speex package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A Divide by Zero vulnerability in the function static int readsamples of Speex v1.2 allows attackers to cause a denial of service DoS via a crafte...
Google TensorFlow integer division by zero error vulnerability
Google TensorFlow is an end-to-end open source machine learning platform. An integer division by zero error vulnerability exists in the implementation of tf.rawops.SparseReshape in versions prior to Google TensorFlow 2.6.0. No details of the vulnerability are currently available...
Design/Logic Flaw
A Divide-by-zero vulnerability exists in JasPer Image Coding Toolkit 2.0 in jasper/src/libjasper/jpc/jpcenc.c...
CVE-2021-29593 Division by zero in TFLite's implementation of `BatchToSpaceNd`
TensorFlow is an end-to-end open source platform for machine learning. The implementation of the BatchToSpaceNd TFLite operator is vulnerable to a division by zero...
CVE-2021-20246
A flaw was found in ImageMagick in MagickCore/resample.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability...
Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2021-1476)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OPENSUSE-SU-2021:0377-1 Security update for ImageMagick
This update for ImageMagick fixes the following issues: - CVE-2021-20241 bsc1182335: Division by zero in WriteJP2Image in coders/jp2.c - CVE-2021-20243 bsc1182336: Division by zero in GetResizeFilterWeight in MagickCore/resize.c - CVE-2021-20244 bsc1182325: Division by zero in ImplodeImage in...
ImageMagick De-Zero Vulnerability
Imagemagick Studio ImageMagick is a suite of open source image processing software from the American company ImageMagick Studio. The software can read, convert or write images in a variety of formats. A de-zero vulnerability exists in coders/jp2.c in versions prior to ImageMagick 7.0.10-62. An...
ImageMagick De-Zero Vulnerability (CNVD-2021-23799)
Imagemagick Studio ImageMagick is a suite of open source image processing software from the American company ImageMagick Studio. The software can read, convert or write images in a variety of formats. A de-zero vulnerability exists in MagickCore/resample.c in versions of ImageMagick prior to...
EulerOS 2.0 SP9 : nasm (EulerOS-SA-2020-2416)
According to the versions of the nasm package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Netwide Assembler NASM 2.14rc16 has a heap-based buffer over-read in expandmmacparams in asm/preproc.c for the special cases of the % and $ and !...
CVE-2020-16161
The CVE-2020-16161 entry concerns GoPro gpmf-parser 1.5, with a division-by-zero vulnerability in GPMF_ScaledData() when parsing malicious input. This can cause a crash (availability impact) as noted in the description and CVSS metrics (base score 5.0/7.5 depending on vector). The provided docume...
OPENSUSE-SU-2019:2519-1 Security update for ImageMagick
This update for ImageMagick fixes the following issues: Security issues fixed: - CVE-2019-15139: Fixed a denial-of-service vulnerability in ReadXWDImage bsc1146213. - CVE-2019-15140: Fixed a use-after-free bug in the Matlab image parser bsc1146212. - CVE-2019-15141: Fixed a divide-by-zero...