|
224211
|
7.8 |
HIGH
Local
|
imagemagick
|
imagemagick
|
ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the ReadPANGOImage function in coders/pango.c.
|
CWE-665
Improper Initialization
|
CVE-2019-12978
|
2024-11-21 13:23 |
2019-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224212
|
7.8 |
HIGH
Local
|
imagemagick
|
imagemagick
|
ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the WriteJP2Image function in coders/jp2.c.
|
CWE-665
Improper Initialization
|
CVE-2019-12977
|
2024-11-21 13:23 |
2019-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224213
|
5.5 |
MEDIUM
Local
|
imagemagick
debian
canonical
opensuse
|
imagemagick
debian_linux
ubuntu_linux
leap
|
ImageMagick 7.0.8-34 has a memory leak in the ReadPCLImage function in coders/pcl.c.
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2019-12976
|
2024-11-21 13:23 |
2019-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224214
|
5.5 |
MEDIUM
Local
|
imagemagick
debian
canonical
opensuse
|
imagemagick
debian_linux
ubuntu_linux
leap
|
ImageMagick 7.0.8-34 has a memory leak vulnerability in the WriteDPXImage function in coders/dpx.c.
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2019-12975
|
2024-11-21 13:23 |
2019-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224215
|
5.5 |
MEDIUM
Local
|
imagemagick
|
imagemagick
|
A NULL pointer dereference in the function ReadPANGOImage in coders/pango.c and the function ReadVIDImage in coders/vid.c in ImageMagick 7.0.8-34 allows remote attackers to cause a denial of service …
|
CWE-476
NULL Pointer Dereference
|
CVE-2019-12974
|
2024-11-21 13:23 |
2019-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224216
|
5.5 |
MEDIUM
Local
|
uclouvain
opensuse
debian
oracle
|
openjpeg
leap
debian_linux
database_server
outside_in_technology
|
In OpenJPEG 2.3.1, there is excessive iteration in the opj_t1_encode_cblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp …
|
CWE-834
Excessive Iteration
|
CVE-2019-12973
|
2024-11-21 13:23 |
2019-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224217
|
5.5 |
MEDIUM
Local
|
gnu
opensuse
canonical
|
binutils
leap
ubuntu_linux
|
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. There is a heap-based buffer over-read in _bfd_doprnt in bfd.c because elf_objec…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-12972
|
2024-11-21 13:23 |
2019-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224218
|
5.3 |
MEDIUM
Network
|
drdteam
|
doomseeker
|
A vulnerability was found in the Sonic Robo Blast 2 (SRB2) plugin (EP_Versions 9 to 11 inclusive) distributed with Doomseeker 1.1 and 1.2. Affected plugin versions did not discard IP packets with an …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2019-12968
|
2024-11-21 13:23 |
2019-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224219
|
9.8 |
CRITICAL
Network
|
fehelper_project
|
fehelper
|
FeHelper through 2019-06-19 allows arbitrary code execution during a JSON format operation, as demonstrated by the {"a":(function(){confirm(1)})()} input.
|
CWE-74
Injection
|
CVE-2019-12966
|
2024-11-21 13:23 |
2019-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224220
|
6.1 |
MEDIUM
Network
|
livezilla
|
livezilla
|
LiveZilla Server before 8.0.1.1 is vulnerable to XSS in the ticket.php Subject.
|
CWE-79
Cross-site Scripting
|
CVE-2019-12964
|
2024-11-21 13:23 |
2019-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
