CVE-2017-5978
The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted ZIP file.
Source: CVE-2017-5978
[월:] 2017년 03월
CVE-2017-5980
CVE-2017-5980
The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted ZIP file.
Source: CVE-2017-5980
CVE-2017-5977
CVE-2017-5977
The zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (invalid memory read and crash) via a crafted ZIP file.
Source: CVE-2017-5977
CVE-2017-5981
CVE-2017-5981
seeko.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (assertion failure and crash) via a crafted ZIP file.
Source: CVE-2017-5981
CVE-2017-5854
CVE-2017-5854
base/PdfOutputStream.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.
Source: CVE-2017-5854
CVE-2017-5853 (podofo)
CVE-2017-5853 (podofo)
Integer overflow in base/PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file.
Source: CVE-2017-5853 (podofo)
CVE-2017-5852 (podofo)
CVE-2017-5852 (podofo)
The PoDoFo::PdfPage::GetInheritedKeyFromObject function in base/PdfVariant.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted file.
Source: CVE-2017-5852 (podofo)
CVE-2017-5665 (libmp3splt)
CVE-2017-5665 (libmp3splt)
The splt_cue_export_to_file function in cue.c in libmp3splt 0.9.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.
Source: CVE-2017-5665 (libmp3splt)
CVE-2017-5504 (jasper)
CVE-2017-5504 (jasper)
The jpc_undo_roi function in libjasper/jpc/jpc_dec.c in JasPer 1.900.27 allows remote attackers to cause a denial of service (invalid memory read and crash) via a crafted image.
Source: CVE-2017-5504 (jasper)
CVE-2017-5503 (jasper)
CVE-2017-5503 (jasper)
The dec_clnpass function in libjasper/jpc/jpc_t1dec.c in JasPer 1.900.27 allows remote attackers to cause a denial of service (invalid memory write and crash) or possibly have unspecified other impact via a crafted image.
Source: CVE-2017-5503 (jasper)