Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27956 of 28407

CVE-2014-9970

Posted by Cyberthreat Blog | May 21, 2017 | CVE Notifications |

jasypt before 1.9.2 allows a timing attack against the password hash comparison.

CVE-2017-9116

Posted by Cyberthreat Blog | May 21, 2017 | CVE Notifications |

In OpenEXR 2.2.0, an invalid read of size 1 in the uncompress function in ImfZip.cpp could cause the application to crash.

CVE-2017-9114

Posted by Cyberthreat Blog | May 21, 2017 | CVE Notifications |

In OpenEXR 2.2.0, an invalid read of size 1 in the refill function in ImfFastHuf.cpp could cause the application to crash.

CVE-2017-9112

Posted by Cyberthreat Blog | May 21, 2017 | CVE Notifications |

In OpenEXR 2.2.0, an invalid read of size 1 in the getBits function in ImfHuf.cpp could cause the application to crash.

CVE-2017-9113

Posted by Cyberthreat Blog | May 21, 2017 | CVE Notifications |

In OpenEXR 2.2.0, an invalid write of size 1 in the bufferedReadPixels function in ImfInputFile.cpp could cause the application to crash or execute arbitrary code.

Author: Cyberthreat Blog

CVE-2014-9970

CVE-2017-9116

CVE-2017-9114

CVE-2017-9112

CVE-2017-9113