|
197641
|
6.5 |
MEDIUM
Network
|
ffmpeg
|
ffmpeg
|
In libavformat/mxfdec.c in FFmpeg 3.3.3 -> 2.4, a DoS in mxf_read_index_entry_array() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted MXF file, which claims…
|
CWE-834
Excessive Iteration
|
CVE-2017-14170
|
2024-11-21 12:12 |
2017-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197642
|
6.5 |
MEDIUM
Network
|
libarchive
debian
canonical
|
libarchive
debian_linux
ubuntu_linux
|
libarchive 3.3.2 allows remote attackers to cause a denial of service (xml_data heap-based buffer over-read and application crash) via a crafted xar archive, related to the mishandling of empty strin…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-14166
|
2024-11-21 12:12 |
2017-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197643
|
6.5 |
MEDIUM
Network
|
graphicsmagick
|
graphicsmagick
|
The ReadSUNImage function in coders/sun.c in GraphicsMagick 1.3.26 has an issue where memory allocation is excessive because it depends only on a length field in a header. This may lead to remote den…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14165
|
2024-11-21 12:12 |
2017-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197644
|
8.8 |
HIGH
Network
|
uclouvain
|
openjpeg
|
A size-validation issue was discovered in opj_j2k_write_sot in lib/openjp2/j2k.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service (heap-b…
|
CWE-119
CWE-787
Incorrect Access of Indexable Resource ('Range Error')
Out-of-bounds Write
|
CVE-2017-14164
|
2024-11-21 12:12 |
2017-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197645
|
4.7 |
MEDIUM
Local
|
openldap
oracle
|
openldap
blockchain_platform
|
slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-roo…
|
CWE-665
Improper Initialization
|
CVE-2017-14159
|
2024-11-21 12:12 |
2017-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197646
|
7.5 |
HIGH
Network
|
scrapy
|
scrapy
|
Scrapy 1.4 allows remote attackers to cause a denial of service (memory consumption) via large files because arbitrarily many files are read into memory, which is especially problematic if the files …
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2017-14158
|
2024-11-21 12:12 |
2017-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197647
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The atyfb_ioctl function in drivers/video/fbdev/aty/atyfb_base.c in the Linux kernel through 4.12.10 does not initialize a certain data structure, which allows local users to obtain sensitive informa…
|
CWE-200
Information Exposure
|
CVE-2017-14156
|
2024-11-21 12:12 |
2017-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197648
|
8.8 |
HIGH
Network
|
uclouvain
debian
|
openjpeg
debian_linux
|
A mishandled zero case was discovered in opj_j2k_set_cinema_parameters in lib/openjp2/j2k.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of serv…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-14152
|
2024-11-21 12:12 |
2017-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197649
|
8.8 |
HIGH
Network
|
uclouvain
debian
|
openjpeg
debian_linux
|
An off-by-one error was discovered in opj_tcd_code_block_enc_allocate_data in lib/openjp2/tcd.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14151
|
2024-11-21 12:12 |
2017-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197650
|
7.5 |
HIGH
Network
|
embedthis
|
goahead
|
GoAhead 3.4.0 through 3.6.5 has a NULL Pointer Dereference in the websDecodeUrl function in http.c, leading to a crash for a "POST / HTTP/1.1" request.
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-14149
|
2024-11-21 12:12 |
2017-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
