CVE-2017-14137 (imagemagick)
ReadWEBPImage in coders/webp.c in ImageMagick 7.0.6-5 has a issue where memory allocation is excessive because it depends only on a length field in a header.
Source: CVE-2017-14137 (imagemagick)
[월:] 2017년 09월
CVE-2017-14139 (imagemagick)
CVE-2017-14139 (imagemagick)
ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMSLImage in coders/msl.c.
Source: CVE-2017-14139 (imagemagick)
CVE-2017-14138 (imagemagick)
CVE-2017-14138 (imagemagick)
ImageMagick 7.0.6-5 has a memory leak vulnerability in ReadWEBPImage in coders/webp.c because memory is not freed in certain error cases, as demonstrated by VP8 errors.
Source: CVE-2017-14138 (imagemagick)
CVE-2017-14138
CVE-2017-14138
ImageMagick 7.0.6-5 has a memory leak vulnerability in ReadWEBPImage in coders/webp.c because memory is not freed in certain error cases, as demonstrated by VP8 errors.
Source: CVE-2017-14138
CVE-2017-14136
CVE-2017-14136
OpenCV (Open Source Computer Vision Library) 3.3 has an out-of-bounds write error in the function FillColorRow1 in utils.cpp when reading an image file by using cv::imread. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-12597.
Source: CVE-2017-14136
CVE-2017-14139
CVE-2017-14139
ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMSLImage in coders/msl.c.
Source: CVE-2017-14139
CVE-2017-14135
CVE-2017-14135
enigma2-plugins/blob/master/webadmin/src/WebChilds/Script.py in the webadmin plugin for opendreambox 2.0.0 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the command parameter to the /script URI.
Source: CVE-2017-14135
CVE-2017-14137
CVE-2017-14137
ReadWEBPImage in coders/webp.c in ImageMagick 7.0.6-5 has a issue where memory allocation is excessive because it depends only on a length field in a header.
Source: CVE-2017-14137
CVE-2017-14130 (binutils)
CVE-2017-14130 (binutils)
The _bfd_elf_parse_attributes function in elf-attrs.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (_bfd_elf_attr_strdup heap-based buffer over-read and application crash) via a crafted ELF file.
Source: CVE-2017-14130 (binutils)
CVE-2017-14128 (binutils)
CVE-2017-14128 (binutils)
The decode_line_info function in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (read_1_byte heap-based buffer over-read and application crash) via a crafted ELF file.
Source: CVE-2017-14128 (binutils)