Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Opensuse
(Opensuse)Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2017-01-27 | CVE-2016-9448 | The TIFFFetchNormalTag function in LibTiff 4.0.6 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) by setting the tags TIFF_SETGET_C16ASCII or TIFF_SETGET_C32_ASCII to values that access 0-byte arrays. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-9297. | Libtiff, Opensuse | 7.5 | ||
2017-02-15 | CVE-2016-8684 | The MagickMalloc function in magick/memory.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file." | Debian_linux, Graphicsmagick, Opensuse | 7.8 | ||
2017-02-15 | CVE-2016-8683 | The ReadPCXImage function in coders/pcx.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file." | Debian_linux, Graphicsmagick, Opensuse | 7.8 | ||
2017-02-15 | CVE-2016-8682 | The ReadSCTImage function in coders/sct.c in GraphicsMagick 1.3.25 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted SCT header. | Debian_linux, Graphicsmagick, Opensuse | 7.5 | ||
2017-02-06 | CVE-2016-7800 | Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service (application crash) via a crafted 8BIM chunk, which triggers a heap-based buffer overflow. | Debian_linux, Graphicsmagick, Leap, Opensuse | 7.5 | ||
2016-12-23 | CVE-2016-7787 | A maliciously crafted command line for kdesu can result in the user only seeing part of the commands that will actually get executed as super user. | Kde\-Cli\-Tools, Leap, Opensuse | 4.9 | ||
2017-02-06 | CVE-2016-7449 | The TIFFGetField function in coders/tiff.c in GraphicsMagick 1.3.24 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a file containing an "unterminated" string. | Debian_linux, Graphicsmagick, Leap, Opensuse | 7.5 | ||
2017-02-06 | CVE-2016-7448 | The Utah RLE reader in GraphicsMagick before 1.3.25 allows remote attackers to cause a denial of service (CPU consumption or large memory allocations) via vectors involving the header information and the file size. | Debian_linux, Graphicsmagick, Leap, Opensuse | 7.5 | ||
2017-02-06 | CVE-2016-7447 | Heap-based buffer overflow in the EscapeParenthesis function in GraphicsMagick before 1.3.25 allows remote attackers to have unspecified impact via unknown vectors. | Debian_linux, Graphicsmagick, Leap, Opensuse | 9.8 | ||
2017-02-06 | CVE-2016-7446 | Buffer overflow in the MVG and SVG rendering code in GraphicsMagick 1.3.24 allows remote attackers to have unspecified impact via unknown vectors. Note: This vulnerability exists due to an incomplete patch for CVE-2016-2317. | Debian_linux, Graphicsmagick, Leap, Opensuse | 9.8 |