Filtered by vendor Entropymine
Subscribe
Total
26 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2017-7623 | 1 Entropymine | 1 Imageworsener | 2023-12-10 | 4.3 MEDIUM | 5.5 MEDIUM |
The iwmiffr_convert_row32 function in imagew-miff.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file. | |||||
CVE-2017-8327 | 1 Entropymine | 1 Imageworsener | 2023-12-10 | 7.1 HIGH | 6.5 MEDIUM |
The bmpr_read_uncompressed function in imagew-bmp.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (memory consumption) via a crafted image. | |||||
CVE-2017-8326 | 1 Entropymine | 1 Imageworsener | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
libimageworsener.a in ImageWorsener before 1.3.1 has "left shift cannot be represented in type int" undefined behavior issues, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image, related to imagew-bmp.c and imagew-util.c. | |||||
CVE-2017-8325 | 1 Entropymine | 1 Imageworsener | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
The iw_process_cols_to_intermediate function in imagew-main.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted image. | |||||
CVE-2017-7453 | 1 Entropymine | 1 Imageworsener | 2023-12-10 | 4.3 MEDIUM | 5.5 MEDIUM |
The iwgif_record_pixel function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. | |||||
CVE-2017-7962 | 1 Entropymine | 1 Imageworsener | 2023-12-10 | 4.3 MEDIUM | 5.5 MEDIUM |
The iwgif_read_image function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file. |