CWE:
 

Sorry. No results for Bugtraq WLB2


CVEMAP Search Results

CVE
Details
Description
2019-07-15
Medium
CVE-2019-1083

Vendor: Microsoft
Software: .net framework
 

 
A denial of service vulnerability exists when Microsoft Common Object Runtime Library improperly handles web requests, aka '.NET Denial of Service Vulnerability'.

 
2019-07-14
Medium
CVE-2019-13602

Vendor: Videolan
Software: Vlc media player
 

 
An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media player through 3.0.7.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and crash) or possibly have unspecified other impact via a crafted .mp4 file.

 
2019-07-03
Medium
CVE-2019-5052

Vendor: Libsdl
Software: Sdl2 image
 

 
An exploitable integer overflow vulnerability exists when loading a PCX file in SDL2_image 2.0.4. A specially crafted file can cause an integer overflow, resulting in too little memory being allocated, which can lead to a buffer overflow and potential code execution. An attacker can provide a specially crafted image file to trigger this vulnerability.

 
2019-07-01
Medium
CVE-2019-13136

Vendor: Imagemagick
Software: Imagemagick
 

 
ImageMagick before 7.0.8-50 has an integer overflow vulnerability in the function TIFFSeekCustomStream in coders/tiff.c.

 
2019-06-30
Medium
CVE-2019-13107

Vendor: Matio project
Software: Matio
 

 
Multiple integer overflows exist in MATIO before 1.5.16, related to mat.c, mat4.c, mat5.c, mat73.c, and matvar_struct.c

 
Low
CVE-2019-13108

Vendor: Exiv2
Software: Exiv2
 

 
An integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (SIGSEGV) via a crafted PNG image file, because PngImage::readMetadata mishandles a zero value for iccOffset.

 
Low
CVE-2019-13109

Vendor: Exiv2
Software: Exiv2
 

 
An integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (SIGSEGV) via a crafted PNG image file, because PngImage::readMetadata mishandles a chunkLength - iccOffset subtraction.

 
Low
CVE-2019-13110

Vendor: Exiv2
Software: Exiv2
 

 
A CiffDirectory::readDirectory integer overflow and out-of-bounds read in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (SIGSEGV) via a crafted CRW image file.

 
Low
CVE-2019-13111

Vendor: Exiv2
Software: Exiv2
 

 
A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (large heap allocation followed by a very long running loop) via a crafted WEBP image file.

 
2019-06-29
Medium
CVE-2019-13049

Vendor: Toaruos
Software: Toaruos
 

 
An integer wrap in kernel/sys/syscall.c in ToaruOS 1.10.10 allows users to map arbitrary kernel pages into userland process space via TOARU_SYS_FUNC_MMAP, leading to escalation of privileges.

 

 


Copyright 2019, cxsecurity.com

 

Back to Top