CVE-2017-1000422
- EPSS 2.02%
- Veröffentlicht 02.01.2018 20:29:00
- Zuletzt bearbeitet 21.11.2024 03:04:42
Gnome gdk-pixbuf 2.36.8 and older is vulnerable to several integer overflow in the gif_get_lzw function resulting in memory corruption and potential code execution
CVE-2017-1000421
- EPSS 2.67%
- Veröffentlicht 02.01.2018 19:29:00
- Zuletzt bearbeitet 21.11.2024 03:04:42
Gifsicle gifview 1.89 and older is vulnerable to a use-after-free in the read_gif function resulting potential code execution
CVE-2017-1000456
- EPSS 1.97%
- Veröffentlicht 02.01.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 03:04:46
freedesktop.org libpoppler 0.60.1 fails to validate boundaries in TextPool::addWord, leading to overflow in subsequent calculations.
CVE-2017-1000450
- EPSS 3.24%
- Veröffentlicht 02.01.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 03:04:45
In opencv/modules/imgcodecs/src/utils.cpp, functions FillUniColor and FillUniGray do not check the input length, which can lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. This affects Ope...
CVE-2017-1000445
- EPSS 2.28%
- Veröffentlicht 02.01.2018 15:29:00
- Zuletzt bearbeitet 21.11.2024 03:04:45
ImageMagick 7.0.7-1 and older version are vulnerable to null pointer dereference in the MagickCore component and might lead to denial of service
CVE-2017-18005
- EPSS 0.8%
- Veröffentlicht 31.12.2017 19:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Exiv2 0.26 has a Null Pointer Dereference in the Exiv2::DataValue::toLong function in value.cpp, related to crafted metadata in a TIFF file.
CVE-2017-17997
- EPSS 1.78%
- Veröffentlicht 30.12.2017 07:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In Wireshark before 2.2.12, the MRDISC dissector misuses a NULL pointer and crashes. This was addressed in epan/dissectors/packet-mrdisc.c by validating an IPv4 address. This vulnerability is similar to CVE-2017-9343.
CVE-2017-17760
- EPSS 2.24%
- Veröffentlicht 29.12.2017 18:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
OpenCV 3.3.1 has a Buffer Overflow in the cv::PxMDecoder::readData function in grfmt_pxm.cpp, because an incorrect size value is used.
CVE-2014-4914
- EPSS 2.33%
- Veröffentlicht 29.12.2017 14:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The Zend_Db_Select::order function in Zend Framework before 1.12.7 does not properly handle parentheses, which allows remote attackers to conduct SQL injection attacks via unspecified vectors.
CVE-2017-17912
- EPSS 1.81%
- Veröffentlicht 27.12.2017 17:08:22
- Zuletzt bearbeitet 13.05.2026 00:24:29
In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-based buffer over-read in ReadNewsProfile in coders/tiff.c, in which LocaleNCompare reads heap data beyond the allocated region.