The jas_seq2d_create function in jas_seq.c in JasPer before 1.900.14 allows remote attackers to cause a denial of service (assertion failure) via a crafted image file. Date published : 2017-03-23 http://www.securityfocus.com/bid/94371 https://bugzilla.redhat.com/show_bug.cgi?id=1396965
The jpc_irct and jpc_iict functions in jpc_mct.c in JasPer before 1.900.14 allow remote attackers to cause a denial of service (assertion failure). Date published : 2017-03-23 http://www.securityfocus.com/bid/94371 https://bugzilla.redhat.com/show_bug.cgi?id=1396963
The ras_getcmap function in ras_dec.c in JasPer before 1.900.14 allows remote attackers to cause a denial of service (assertion failure) via a crafted image file. Date published : 2017-03-23 http://www.securityfocus.com/bid/94371 https://bugzilla.redhat.com/show_bug.cgi?id=1396962
Integer overflow in the jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.13 allows remote attackers to have unspecified impact via a crafted file, which triggers an assertion failure. Date published : 2017-03-23 http://www.securityfocus.com/bid/94374 https://bugzilla.redhat.com/show_bug.cgi?id=1396959
The dwarf_get_aranges_list function in dwarf_arrange.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read). Date published : 2017-03-23 http://www.securityfocus.com/bid/94284 https://bugzilla.redhat.com/show_bug.cgi?id=1394804
Heap-based buffer overflow in the _dwarf_skim_forms function in libdwarf/dwarf_macro5.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service (out-of-bounds read). Date published : 2017-03-23 http://www.securityfocus.com/bid/94284 https://bugzilla.redhat.com/show_bug.cgi?id=1394802
listmp3.c in libming 0.4.7 allows remote attackers to unspecified impact via a crafted mp3 file, which triggers an invalid left shift. Date published : 2017-03-23 http://www.securityfocus.com/bid/94254 libming: listmp3: left shift in listmp3.c
The printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mp3 file. Date published : 2017-03-23 http://www.securityfocus.com/bid/94252 https://blogs.gentoo.org/ago/2016/11/09/libming-listmp3-divide-by-zero-in-printmp3headers-list
Buffer overflow in the printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mp3 file. Date published : 2017-03-23 http://www.securityfocus.com/bid/94251 libming: listmp3:...
Multiple integer overflows in the (1) jas_realloc function in base/jas_malloc.c and (2) mem_resize function in base/jas_stream.c in JasPer before 1.900.22 allow remote attackers to cause a denial of service via a crafted image, which...
A reflected XSS vulnerability exists in the web console of the Document Viewer Agent in Novell GroupWise before 2014 R2 Support Pack 1 Hot Patch 2 that may enable a remote attacker to execute...
A missing X-Frame-Options header in the NDS Utility Monitor in NDSD in Novell eDirectory before 9.0.2 could be used by remote attackers for clickjacking. Date published : 2017-03-23 http://www.securityfocus.com/bid/97320 https://www.novell.com/support/kb/doc.php?id=7016794
NDSD in Novell eDirectory before 9.0.2 did not calculate ACLs on LDAP objects across partition boundaries correctly, which could lead to a privilege escalation by modifying user attributes that would otherwise be filtered by...
The wmf_malloc function in api.c in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (application crash) via a crafted wmf file, which triggers a memory allocation failure. Date published : 2017-03-23...