Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Entropymine Subscribe
Filtered by product Imageworsener
Total 23 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-12804 1 Entropymine 1 Imageworsener 2023-12-10 4.3 MEDIUM 6.5 MEDIUM
The iwgif_init_screen function in imagew-gif.c:510 in ImageWorsener 1.3.2 allows remote attackers to cause a denial of service (hmemory exhaustion) via a crafted file.
CVE-2018-16782 1 Entropymine 1 Imageworsener 2023-12-10 6.8 MEDIUM 8.8 HIGH
libimageworsener.a in ImageWorsener 1.3.2 has a buffer overflow in the bmpr_read_rle_internal function in imagew-bmp.c.
CVE-2018-5252 1 Entropymine 1 Imageworsener 2023-12-10 2.6 LOW 5.3 MEDIUM
libimageworsener.a in ImageWorsener 1.3.2, when libjpeg 8d is used, has a large loop in the get_raw_sample_int function in imagew-main.c.
CVE-2017-9201 1 Entropymine 1 Imageworsener 2023-12-10 4.3 MEDIUM 6.5 MEDIUM
imagew-cmd.c:850:46 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted image, related to imagew-api.c.
CVE-2017-9205 1 Entropymine 1 Imageworsener 2023-12-10 4.3 MEDIUM 6.5 MEDIUM
The iw_get_ui16be function in imagew-util.c:422:24 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (invalid read and SEGV) via a crafted image, related to imagew-jpeg.c.
CVE-2017-9207 1 Entropymine 1 Imageworsener 2023-12-10 4.3 MEDIUM 6.5 MEDIUM
The iw_get_ui16be function in imagew-util.c:422:24 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted image, related to imagew-jpeg.c.
CVE-2017-9204 1 Entropymine 1 Imageworsener 2023-12-10 4.3 MEDIUM 6.5 MEDIUM
The iw_get_ui16le function in imagew-util.c:405:23 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (invalid read and SEGV) via a crafted image, related to imagew-jpeg.c.
CVE-2017-9203 1 Entropymine 1 Imageworsener 2023-12-10 4.3 MEDIUM 6.5 MEDIUM
imagew-main.c:960:12 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (buffer underflow) via a crafted image, related to imagew-bmp.c.
CVE-2017-9202 1 Entropymine 1 Imageworsener 2023-12-10 4.3 MEDIUM 6.5 MEDIUM
imagew-cmd.c:854:45 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted image, related to imagew-api.c.
CVE-2017-9206 1 Entropymine 1 Imageworsener 2023-12-10 4.3 MEDIUM 6.5 MEDIUM
The iw_get_ui16le function in imagew-util.c:405:23 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted image, related to imagew-jpeg.c.
CVE-2017-7624 1 Entropymine 1 Imageworsener 2023-12-10 4.3 MEDIUM 5.5 MEDIUM
The iw_read_bmp_file function in imagew-bmp.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to consume an amount of available memory via a crafted file.
CVE-2017-7454 1 Entropymine 1 Imageworsener 2023-12-10 4.3 MEDIUM 5.5 MEDIUM
The iwgif_record_pixel function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file.
CVE-2017-9094 1 Entropymine 1 Imageworsener 2023-12-10 4.3 MEDIUM 6.5 MEDIUM
The lzw_add_to_dict function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted image.
CVE-2017-7939 1 Entropymine 1 Imageworsener 2023-12-10 4.3 MEDIUM 5.5 MEDIUM
The read_next_pam_token function in imagew-pnm.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (stack-based buffer over-read) via a crafted file.
CVE-2017-7452 1 Entropymine 1 Imageworsener 2023-12-10 4.3 MEDIUM 5.5 MEDIUM
The iwbmp_read_info_header function in imagew-bmp.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
CVE-2017-9093 1 Entropymine 1 Imageworsener 2023-12-10 4.3 MEDIUM 6.5 MEDIUM
The my_skip_input_data_fn function in imagew-jpeg.c in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted image.
CVE-2017-7940 1 Entropymine 1 Imageworsener 2023-12-10 4.3 MEDIUM 5.5 MEDIUM
The iw_read_gif_file function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to consume an amount of available memory via a crafted file.
CVE-2017-7623 1 Entropymine 1 Imageworsener 2023-12-10 4.3 MEDIUM 5.5 MEDIUM
The iwmiffr_convert_row32 function in imagew-miff.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file.
CVE-2017-8327 1 Entropymine 1 Imageworsener 2023-12-10 7.1 HIGH 6.5 MEDIUM
The bmpr_read_uncompressed function in imagew-bmp.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (memory consumption) via a crafted image.
CVE-2017-8326 1 Entropymine 1 Imageworsener 2023-12-10 6.8 MEDIUM 8.8 HIGH
libimageworsener.a in ImageWorsener before 1.3.1 has "left shift cannot be represented in type int" undefined behavior issues, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image, related to imagew-bmp.c and imagew-util.c.