Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27346 of 28220

CVE-2017-11337

Posted by Cyberthreat Blog | Jul 17, 2017 | CVE Notifications |

There is an invalid free in the Action::TaskFactory::cleanup function of actions.cpp in Exiv2 0.26. A crafted input will lead to a remote denial of service attack.

CVE-2017-11339

Posted by Cyberthreat Blog | Jul 17, 2017 | CVE Notifications |

There is a heap-based buffer overflow in the Image::printIFDStructure function of image.cpp in Exiv2 0.26. A Crafted input will lead to a remote denial of service attack.

CVE-2017-11342

Posted by Cyberthreat Blog | Jul 17, 2017 | CVE Notifications |

There is an illegal address access in ast.cpp of LibSass 3.4.5. A crafted input will lead to a remote denial of service attack.

CVE-2017-11336

Posted by Cyberthreat Blog | Jul 17, 2017 | CVE Notifications |

There is a heap-based buffer over-read in the Image::printIFDStructure function in image.cpp in Exiv2 0.26. A Crafted input will lead to a remote denial of service attack.

CVE-2017-11340

Posted by Cyberthreat Blog | Jul 17, 2017 | CVE Notifications |

There is a Segmentation fault in the XmpParser::terminate() function in Exiv2 0.26, related to an exit call. A Crafted input will lead to a remote denial of service attack.

Author: Cyberthreat Blog

CVE-2017-11337

CVE-2017-11339

CVE-2017-11342

CVE-2017-11336

CVE-2017-11340