Total
2850 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2017-12140 | 1 Imagemagick | 1 Imagemagick | 2024-08-05 | N/A |
The ReadDCMImage function in coders\dcm.c in ImageMagick 7.0.6-1 has an integer signedness error leading to excessive memory consumption via a crafted DCM file. | ||||
CVE-2017-11625 | 1 Qpdf Project | 1 Qpdf | 2024-08-05 | N/A |
A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDF::resolveObjectsInStream function in QPDF.cc, aka an "infinite loop." | ||||
CVE-2017-11624 | 1 Qpdf Project | 1 Qpdf | 2024-08-05 | N/A |
A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in QPDFTokenizer.cc after two consecutive calls to QPDFObjectHandle::parseInternal, aka an "infinite loop." | ||||
CVE-2017-11627 | 1 Qpdf Project | 1 Qpdf | 2024-08-05 | N/A |
A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the PointerHolder function in PointerHolder.hh, aka an "infinite loop." | ||||
CVE-2017-11626 | 1 Qpdf Project | 1 Qpdf | 2024-08-05 | N/A |
A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in QPDFTokenizer.cc after four consecutive calls to QPDFObjectHandle::parseInternal, aka an "infinite loop." | ||||
CVE-2017-11530 | 1 Imagemagick | 1 Imagemagick | 2024-08-05 | N/A |
The ReadEPTImage function in coders/ept.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (memory consumption) via a crafted file. | ||||
CVE-2017-11551 | 1 Libid3tag Project | 1 Libid3tag | 2024-08-05 | N/A |
The id3_field_parse function in field.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service (OOM) via a crafted MP3 file. | ||||
CVE-2017-11527 | 1 Imagemagick | 1 Imagemagick | 2024-08-05 | N/A |
The ReadDPXImage function in coders/dpx.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (memory consumption) via a crafted file. | ||||
CVE-2017-11526 | 1 Imagemagick | 1 Imagemagick | 2024-08-05 | N/A |
The ReadOneMNGImage function in coders/png.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted file. | ||||
CVE-2017-11521 | 2 Debian, Resiprocate | 2 Debian Linux, Resiprocate | 2024-08-05 | 7.5 High |
The SdpContents::Session::Medium::parse function in resip/stack/SdpContents.cxx in reSIProcate 1.10.2 allows remote attackers to cause a denial of service (memory consumption) by triggering many media connections. | ||||
CVE-2017-11446 | 1 Imagemagick | 1 Imagemagick | 2024-08-05 | N/A |
The ReadPESImage function in coders\pes.c in ImageMagick 7.0.6-1 has an infinite loop vulnerability that can cause CPU exhaustion via a crafted PES file. | ||||
CVE-2017-11447 | 1 Imagemagick | 1 Imagemagick | 2024-08-05 | 6.5 Medium |
The ReadSCREENSHOTImage function in coders/screenshot.c in ImageMagick before 7.0.6-1 has memory leaks, causing denial of service. | ||||
CVE-2017-11449 | 1 Imagemagick | 1 Imagemagick | 2024-08-05 | 8.8 High |
coders/mpc.c in ImageMagick before 7.0.6-1 does not enable seekable streams and thus cannot validate blob sizes, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an image received from stdin. | ||||
CVE-2017-11333 | 1 Xiph.org | 1 Libvorbis | 2024-08-05 | N/A |
The vorbis_analysis_wrote function in lib/block.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service (OOM) via a crafted wav file. | ||||
CVE-2017-11170 | 1 Imagemagick | 1 Imagemagick | 2024-08-05 | N/A |
The ReadTGAImage function in coders\tga.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via invalid colors data in the header of a TGA or VST file. | ||||
CVE-2017-11188 | 1 Imagemagick | 1 Imagemagick | 2024-08-05 | N/A |
The ReadDPXImage function in coders\dpx.c in ImageMagick 7.0.6-0 has a large loop vulnerability that can cause CPU exhaustion via a crafted DPX file, related to lack of an EOF check. | ||||
CVE-2017-11140 | 1 Graphicsmagick | 1 Graphicsmagick | 2024-08-05 | N/A |
The ReadJPEGImage function in coders/jpeg.c in GraphicsMagick 1.3.26 creates a pixel cache before a successful read of a scanline, which allows remote attackers to cause a denial of service (resource consumption) via crafted JPEG files. | ||||
CVE-2017-11141 | 1 Imagemagick | 1 Imagemagick | 2024-08-05 | N/A |
The ReadMATImage function in coders\mat.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via a crafted MAT file, related to incorrect ordering of a SetImageExtent call. | ||||
CVE-2017-11142 | 1 Php | 1 Php | 2024-08-05 | N/A |
In PHP before 5.6.31, 7.x before 7.0.17, and 7.1.x before 7.1.3, remote attackers could cause a CPU consumption denial of service attack by injecting long form variables, related to main/php_variables.c. | ||||
CVE-2017-10922 | 1 Xen | 1 Xen | 2024-08-05 | N/A |
The grant-table feature in Xen through 4.8.x mishandles MMIO region grant references, which allows guest OS users to cause a denial of service (loss of grant trackability), aka XSA-224 bug 3. |