Secunia Research has discovered a vulnerability in libexif, which can be exploited by malicious people to cause a DoS (Denial of Service). An error when processing the EXIF_IFD_INTEROPERABILITY and EXIF_IFD_EXIF tags can be exploited to exhaust available CPU resources. The vulnerability is confirmed in version 0.6.21. Other versions may also be affected.
a3e0bd35e18db8d27c9c10475a90db33972c41764401685daf843f8770832532Secunia Research has discovered multiple vulnerabilities in LibRaw, which can be exploited by malicious people to cause a DoS (Denial of Service). A type confusion error within the "unpacked_load_raw()" function (internal/dcraw_common.cpp) can be exploited to trigger an infinite loop. An error within the "parse_rollei()" function (internal/dcraw_common.cpp) can be exploited to trigger an infinite loop. An error within the "parse_sinar_ia()" function (internal/dcraw_common.cpp) can be exploited to exhaust available CPU resources. The vulnerabilities are confirmed in version 0.19.0 and reported in versions prior to 0.19.1.
3db5c91bb6c24888166cacb845b1ca20edac2ec4797287c3534c7c75400e4192Secunia Research has discovered a vulnerability in Clam AntiVirus, which can be exploited by malicious people to cause a DoS (Denial of Service). An integer overflow error within the "parsehwp3_paragraph()" function (libclamav/hwp.c) can be exploited to trigger an infinite loop via a specially crafted Hangul Word Processor file. The vulnerability is confirmed in version 0.100.0 and reported in versions prior to 0.100.1.
35de8f1d0b377601d9193972f01694233332853eeac0bf4ef7798aa8df394debSecunia Research has discovered multiple vulnerabilities in LibRaw, which can be exploited by malicious people to cause a DoS (Denial of Service). LibRaw versions prior to 0.18.8 are affected.
b5c03c6b07fb1998c8c86a816369959648583565dcf35f7ecdbee8c37dd0fc3cLibRaw versions prior to 0.18.7 suffer from multiple denial of service vulnerabilities.
6f2fad3f5394bdde7e23e002cd783a40da990ed01f086dd079d4a423604f3b82Libraw version 0.8.15 suffers from a denial of service vulnerability.
edc5e60b75f274544b8c6f864088d7b512ec89fc5de9e0bcb020100658a95905A vulnerability in libsndfile 1.0.28, caused due to an error in the"aiff_read_chanmap()" function (src/aiff.c), can be exploited tocause an out-of-bounds read memory access via a specially crafted AIFFfile.
202d848dc26e5ae54a5f6242a0cbeccac3b4c74fde6383e998ebb80e44e070e2
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed