Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27883 of 28075

CVE-2017-7946

Posted by Cyberthreat Blog | Apr 18, 2017 | CVE Notifications |

The get_relocs_64 function in libr/bin/format/mach0/mach0.c in radare2 1.3.0 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted Mach0 file.

CVE-2017-7939

Posted by Cyberthreat Blog | Apr 18, 2017 | CVE Notifications |

The read_next_pam_token function in imagew-pnm.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (stack-based buffer over-read) via a crafted file.

CVE-2017-7940

Posted by Cyberthreat Blog | Apr 18, 2017 | CVE Notifications |

The iw_read_gif_file function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to consume an amount of available memory via a crafted file.

CVE-2017-7942

Posted by Cyberthreat Blog | Apr 18, 2017 | CVE Notifications |

The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.

CVE-2017-7943

Posted by Cyberthreat Blog | Apr 18, 2017 | CVE Notifications |

The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.

Author: Cyberthreat Blog

CVE-2017-7946

CVE-2017-7939

CVE-2017-7940

CVE-2017-7942

CVE-2017-7943