Total
430 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2018-12504 | 1 Tinyexr Project | 1 Tinyexr | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
tinyexr 0.9.5 has an assertion failure in ComputeChannelLayout in tinyexr.h. | |||||
CVE-2017-12434 | 1 Imagemagick | 1 Imagemagick | 2024-02-04 | 4.3 MEDIUM | 6.5 MEDIUM |
In ImageMagick 7.0.6-1, a missing NULL check vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service (assertion failure) in DestroyImageInfo in image.c. | |||||
CVE-2017-0375 | 1 Torproject | 1 Tor | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
The hidden-service feature in Tor before 0.3.0.8 allows a denial of service (assertion failure and daemon exit) in the relay_send_end_cell_from_edge_ function via a malformed BEGIN cell. | |||||
CVE-2017-9501 | 1 Imagemagick | 1 Imagemagick | 2024-02-04 | 4.3 MEDIUM | 6.5 MEDIUM |
In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the function LockSemaphoreInfo, which allows attackers to cause a denial of service via a crafted file. | |||||
CVE-2017-13750 | 2 Fedoraproject, Jasper Project | 2 Fedora, Jasper | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
There is a reachable assertion abort in the function jpc_dec_process_siz() in jpc/jpc_dec.c:1296 in JasPer 2.0.12 that will lead to a remote denial of service attack. | |||||
CVE-2017-9499 | 1 Imagemagick | 1 Imagemagick | 2024-02-04 | 4.3 MEDIUM | 6.5 MEDIUM |
In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the function SetPixelChannelAttributes, which allows attackers to cause a denial of service via a crafted file. | |||||
CVE-2017-14649 | 1 Graphicsmagick | 1 Graphicsmagick | 2024-02-04 | 4.3 MEDIUM | 5.5 MEDIUM |
ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG data, leading to a denial of service (assertion failure in magick/pixel_cache.c, and application crash). | |||||
CVE-2017-12168 | 1 Linux | 1 Linux Kernel | 2024-02-04 | 4.9 MEDIUM | 6.0 MEDIUM |
The access_pmu_evcntr function in arch/arm64/kvm/sys_regs.c in the Linux kernel before 4.8.11 allows privileged KVM guest OS users to cause a denial of service (assertion failure and host OS crash) by accessing the Performance Monitors Cycle Count Register (PMCCNTR). | |||||
CVE-2017-13745 | 1 Jasper Project | 1 Jasper | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
There is a reachable assertion abort in the function jpc_dec_process_sot() in jpc/jpc_dec.c in JasPer 2.0.12 that will lead to a remote denial of service attack by triggering an unexpected jpc_ppmstabtostreams return value, a different vulnerability than CVE-2018-9154. | |||||
CVE-2017-0376 | 2 Debian, Torproject | 2 Debian Linux, Tor | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
The hidden-service feature in Tor before 0.3.0.8 allows a denial of service (assertion failure and daemon exit) in the connection_edge_process_relay_cell function via a BEGIN_DIR cell on a rendezvous circuit. | |||||
CVE-2017-13749 | 2 Fedoraproject, Jasper Project | 2 Fedora, Jasper | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
There is a reachable assertion abort in the function jpc_pi_nextrpcl() in jpc/jpc_t2cod.c in JasPer 2.0.12 that will lead to a remote denial of service attack. | |||||
CVE-2017-17432 | 2 Debian, Openafs | 2 Debian Linux, Openafs | 2024-02-04 | 7.8 HIGH | 7.5 HIGH |
OpenAFS 1.x before 1.6.22 does not properly validate Rx ack packets, which allows remote attackers to cause a denial of service (system crash or application crash) via crafted fields, as demonstrated by an integer underflow and assertion failure for a small MTU value. | |||||
CVE-2017-9500 | 1 Imagemagick | 1 Imagemagick | 2024-02-04 | 4.3 MEDIUM | 6.5 MEDIUM |
In ImageMagick 7.0.5-8 Q16, an assertion failure was found in the function ResetImageProfileIterator, which allows attackers to cause a denial of service via a crafted file. | |||||
CVE-2017-7508 | 1 Openvpn | 1 Openvpn | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service when receiving malformed IPv6 packet. | |||||
CVE-2017-12670 | 1 Imagemagick | 1 Imagemagick | 2024-02-04 | 4.3 MEDIUM | 6.5 MEDIUM |
In ImageMagick 7.0.6-3, missing validation was found in coders/mat.c, leading to an assertion failure in the function DestroyImage in MagickCore/image.c, which allows attackers to cause a denial of service. | |||||
CVE-2017-11692 | 1 Yaml-cpp Project | 1 Yaml-cpp | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
The function "Token& Scanner::peek" in scanner.cpp in yaml-cpp 0.5.3 and earlier allows remote attackers to cause a denial of service (assertion failure and application exit) via a '!2' string. | |||||
CVE-2017-11524 | 1 Imagemagick | 1 Imagemagick | 2024-02-04 | 4.3 MEDIUM | 6.5 MEDIUM |
The WriteBlob function in MagickCore/blob.c in ImageMagick before 6.9.8-10 and 7.x before 7.6.0-0 allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted file. | |||||
CVE-2017-13747 | 2 Fedoraproject, Jasper Project | 2 Fedora, Jasper | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
There is a reachable assertion abort in the function jpc_floorlog2() in jpc/jpc_math.c in JasPer 2.0.12 that will lead to a remote denial of service attack. | |||||
CVE-2017-13752 | 2 Fedoraproject, Jasper Project | 2 Fedora, Jasper | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
There is a reachable assertion abort in the function jpc_dequantize() in jpc/jpc_dec.c in JasPer 2.0.12 that will lead to a remote denial of service attack. | |||||
CVE-2017-13727 | 1 Libtiff | 1 Libtiff | 2024-02-04 | 4.3 MEDIUM | 6.5 MEDIUM |
There is a reachable assertion abort in the function TIFFWriteDirectoryTagSubifd() in LibTIFF 4.0.8, related to tif_dirwrite.c and a SubIFD tag. A crafted input will lead to a remote denial of service attack. |