» 2017 » 8월

CVE-2017-13728 (ncurses)

Posted on 2017년 8월 29일2017년 8월 31일 by admin

CVE-2017-13728 (ncurses)

There is an infinite loop in the next_char function in comp_scan.c in ncurses 6.0, related to libtic. A crafted input will lead to a remote denial of service attack.

Source: CVE-2017-13728 (ncurses)

CVE-2017-13745 (jasper)

Posted on 2017년 8월 29일2017년 8월 30일 by admin

CVE-2017-13745 (jasper)

There is a reachable assertion abort in the function jpc_dec_process_sot() in jpc/jpc_dec.c in JasPer 2.0.12 that will lead to a remote denial of service attack.

Source: CVE-2017-13745 (jasper)

CVE-2017-13748 (jasper)

Posted on 2017년 8월 29일2017년 8월 30일 by admin

CVE-2017-13748 (jasper)

There are lots of memory leaks in JasPer 2.0.12, triggered in the function jas_strdup() in base/jas_string.c, that will lead to a remote denial of service attack.

Source: CVE-2017-13748 (jasper)

CVE-2017-13747 (jasper)

Posted on 2017년 8월 29일2017년 8월 30일 by admin

CVE-2017-13747 (jasper)

There is a reachable assertion abort in the function jpc_floorlog2() in jpc/jpc_math.c in JasPer 2.0.12 that will lead to a remote denial of service attack.

Source: CVE-2017-13747 (jasper)

CVE-2017-13746 (jasper)

Posted on 2017년 8월 29일2017년 8월 30일 by admin

CVE-2017-13746 (jasper)

There is a reachable assertion abort in the function jpc_dec_process_siz() in jpc/jpc_dec.c:1297 in JasPer 2.0.12 that will lead to a remote denial of service attack.

Source: CVE-2017-13746 (jasper)

CVE-2017-13745

Posted on 2017년 8월 29일2017년 8월 29일 by admin

CVE-2017-13745

There is a reachable assertion abort in the function jpc_dec_process_sot() in jpc/jpc_dec.c in JasPer 2.0.12 that will lead to a remote denial of service attack.

Source: CVE-2017-13745

CVE-2017-13748

Posted on 2017년 8월 29일2017년 8월 29일 by admin

CVE-2017-13748

There are lots of memory leaks in JasPer 2.0.12, triggered in the function jas_strdup() in base/jas_string.c, that will lead to a remote denial of service attack.

Source: CVE-2017-13748

CVE-2017-13731

Posted on 2017년 8월 29일2017년 8월 29일 by admin

CVE-2017-13731

There is an illegal address access in the function postprocess_termcap() in parse_entry.c in ncurses 6.0 that will lead to a remote denial of service attack.

Source: CVE-2017-13731

CVE-2017-13736

Posted on 2017년 8월 29일2017년 8월 29일 by admin

CVE-2017-13736

There are lots of memory leaks in the GMCommand function in magick/command.c in GraphicsMagick 1.3.26 that will lead to a remote denial of service attack.

Source: CVE-2017-13736

CVE-2017-13738

Posted on 2017년 8월 29일2017년 8월 29일 by admin

CVE-2017-13738

There is an illegal address access in the _lou_getALine function in compileTranslationTable.c:346 in Liblouis 3.2.0.

Source: CVE-2017-13738