CVE-2017-1171
The IBM TRIRIGA Application Platform 3.3, 3,4, and 3,5 contain a vulnerability that could allow an authenticated user to execute Application actions they do not have access to. IBM Reference #: 2001083. Date published...
Monthly Archive: March 2017
CVE-2017-1154
IBM Algorithmics One-Algo Risk Application 4.9.1, 5.0, and 5.1.0 could allow a user to gain access to files in the local environment which should not be viewed by application users. IBM Reference #: 1999892....
CVE-2014-9826
ImageMagick allows remote attackers to have unspecified impact via vectors related to error handling in sun files. Date published : 2017-03-30 https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=69490f5cffbda612e15a2985699455bb0b45e276 https://bugzilla.redhat.com/show_bug.cgi?id=1343482
CVE-2014-9825
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9824. Date published : 2017-03-30 https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=69490f5cffbda612e15a2985699455bb0b45e276 https://bugzilla.redhat.com/show_bug.cgi?id=1343481
CVE-2014-9824
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9825. Date published : 2017-03-30 https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=09561d37839dbfa04e017eea14811312985095d8 https://bugzilla.redhat.com/show_bug.cgi?id=1343480
CVE-2014-9823
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9819. Date published : 2017-03-30 https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=09561d37839dbfa04e017eea14811312985095d8 https://bugzilla.redhat.com/show_bug.cgi?id=1343479
CVE-2014-9822
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted quantum file. Date published : 2017-03-30 https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=09561d37839dbfa04e017eea14811312985095d8 https://bugzilla.redhat.com/show_bug.cgi?id=1343478
CVE-2014-9821
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file. Date published : 2017-03-30 https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=0a89a1ccca6e7ee059b73f5cc924513383e8a330 https://bugzilla.redhat.com/show_bug.cgi?id=1343477
CVE-2014-9820
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pnm file. Date published : 2017-03-30 https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=0a89a1ccca6e7ee059b73f5cc924513383e8a330 https://bugzilla.redhat.com/show_bug.cgi?id=1343476
CVE-2014-9819
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9823. Date published : 2017-03-30 https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=0a89a1ccca6e7ee059b73f5cc924513383e8a330 https://bugzilla.redhat.com/show_bug.cgi?id=1343475
CVE-2014-9818
ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a malformed sun file. Date published : 2017-03-30 https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=8e72cbfca8db81132319af14d1f33a3e833666d7 https://bugzilla.redhat.com/show_bug.cgi?id=1343474
CVE-2014-9817
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pdb file. Date published : 2017-03-30 https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=e24de96ab25b396ae914a7640ff4d61e58c40cf0 https://bugzilla.redhat.com/show_bug.cgi?id=1343473
CVE-2014-9816
ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted viff file. Date published : 2017-03-30 https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=35aa01dd5511a2616a6427f7d5d49de0132aeb5f https://bugzilla.redhat.com/show_bug.cgi?id=1343472
CVE-2014-9815
ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted wpg file. Date published : 2017-03-30 https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=1eb3064a9e4a81d0b8cd414e3dcd7fe9b158f241 https://bugzilla.redhat.com/show_bug.cgi?id=1343471